PrestoSoft Community

A forum for discussing ExamDiff Pro, FtpVC, and ExamDiff
https://www.prestoforums.com/

OpenSSL-Libraries are very old resp. vulnerable

https://www.prestoforums.com/viewtopic.php?t=1747

Page 1 of 1

OpenSSL-Libraries are very old resp. vulnerable

Posted: Fri Feb 27, 2015 5:19 pm
by Alpengreis
Hello

The OpenSSL-Libraries, included with actual and up-to-date ExamDiff (Pro) (PlugIns), are very old versions and maybe vulnerable.


- 1th case ...

In the (default) path:

"c:\Program Files\ExamDiff Pro\Plug-Ins\cURL\"

is the v0.9.7.7 (32-bit), wich means v0.9.7g.

c:\Program Files\ExamDiff Pro\Plug-Ins\wget\wget-1.10.2b\


- 2nd case ...

In the (default) path:

"c:\Program Files\ExamDiff Pro\Plug-Ins\wget\wget-1.10.2b\"

is the v0.9.7.7 (32-bit), wich means v0.9.7g.


The actual version of the 0.9.x branch is 0.9.8ze.


For more information see URL: https://www.openssl.org/


Greetings,
Alpengreis

Re: OpenSSL-Libraries are very old resp. vulnerable

Posted: Fri Feb 27, 2015 6:36 pm
by psguru
Looking at http://curl.haxx.se/docs/vulnerabilities.html, it's a moving target. But point taken: we will upgrade curl and Wget to the latest versions with the next build of ExamDiff Pro.

Re: OpenSSL-Libraries are very old resp. vulnerable

Posted: Sat Feb 28, 2015 8:46 am
by Alpengreis
psguru wrote:Looking at http://curl.haxx.se/docs/vulnerabilities.html, it's a moving target.
Ohh, I see ...
psguru wrote:But point taken: we will upgrade curl and Wget to the latest versions with the next build of ExamDiff Pro.
Okay, and thank you for fast reaction!

Have a nice weekend!
All times are UTC-08:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited