Thread: Linux flaw also affects Android/Sailfish devices
View Single Post
nieldk is offline nieldk
2016-08-17 , 08:04
Posts: 1,290 | Thanked: 4,319 times | Joined on Oct 2014
#12
Originally Posted by juiceme View Post
Yes, in theory. And it is a very thin theory indeed.
I have yet to see that attack succeed in real-life situations. It basically can only work against https connections and requires that the server side has fairly outdated configuration.
For ssh, good luck trying!
very true indeed. Unfortunately, outdated configurations are quite common, I see them every day doing pentest.
Honestly, I think we will see this being exploited. If not tomorrow, then in a couple of months.
__________________
You can still support my work by donation - click here
 

The Following 2 Users Say Thank You to nieldk For This Useful Post: