WinSCP 5.7.6/OpenSSL 1.0.1p Susceptible to DROWN???? CVE-2016-0800

Advertisement

Advertisement

martin
Site Admin
martin avatar
Joined:
Posts:
40,476
Location:
Prague, Czechia

Re: WinSCP 5.7.6/OpenSSL 1.0.1p Susceptible to DROWN???? CVE-2016-0800

WinSCP does not support SSL 2.0 since version 4.3. So I believe it makes it immune to the DROWN.
Though the vulnerability is not described in detail from a client point of view.

Reply with quote

Advertisement

You can post new topics in this forum