Ruby OpenSSL private key spoofing ~ CVE-2014-2734 with PoC

[Gregory Disney <gdisney () hytrust com>]

Ruby openssl has a vulnerability when a public key is a issued prior writing to private key and is reopened during a 
script it spoofs a CA private key.

PoC script https://gist.github.com/10446549

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/