==
XWT Foundation Security Advisory
Adam Megacz <[EMAIL PROTECTED]>
http://www.xwt.org/sop.txt
29-Jul-2002 [Public Release]
__
Abstrac
"Thor Larholm" <[EMAIL PROTECTED]> writes:
> I for one am in agreement on this issue, especially with regards to
> "Default" sites on e.g. IIS - it is very uncommon for anyone to
> serve content from the "Default" site (without checking the Host
> header) these days.
On the public Internet, you
TinySSL is an open source, compact (125k jar), SSLv3 client
implementation written in Java (1.1+). Version 1.02 and earlier is
vulnerable to the attack posted last week by Mike Benham:
http://online.securityfocus.com/archive/1/286290
An updated version (1.03) has been posted which fixes thi
