Beware: A vulnerability in OpenSSL could allow a remote attacker to expose sensitive data.
Connectikpeople.co has received the security note which underlines a vulnerability in OpenSSL. This vulnerability could allow a remote attacker to expose sensitive data, user authentication credentials and secret keys, through incorrect memory handling in the TLS heartbeat extension. Connectikpeople.co also observes that, this may also allow an attacker to decrypt traffic or perform other attacks. OpenSSL version 1.0.1g resolves this vulnerability. The 1.0.0 and 0.9.8 branches are not vulnerable.
Therefore Connectikpeople.co recommends users and administrators review
Vulnerability Note VU#720951 for additional information and mitigation details.