The deadly Heart Bleed Bug, which has affected many Internet users across the world, was believed to be targeting only websites and stay limited to those places only.
However, updates coming from networking equipment makers such as Cisco and Juniper suggest that the vulnerability has also affected equipments used to connect the device to the Internet.
The new development about the Heart Bleed Bug shows the increased chances of computers, laptops, smartphones and tablets getting affected by the vulnerability as the bug stays in the networking equipments.
According to both the companies, the Heart Bleed Bug has affected their over two dozen devices that include servers, routers, video cameras, phones and switches.
Talking about the bug in its products, Cisco said in a statement, “Multiple Cisco products incorporate a version of the OpenSSL package affected by a vulnerability that could allow an unauthenticated, remote attacker to retrieve memory in chunks of 64 kilobytes from a connected client or server. The vulnerability is due to a missing bounds check in the handling of the Transport Layer Security (TLS) heartbeat extension.”
The company has listed all the devices which are suspected to be affected by the vulnerability. At the same time a list of the Cisco devices not at all affected by the Heart Bleed Bug.
The company is updating its advisory time-to-time so the clients using its equipments and services can take appropriate measures to make sure they stay away from the deadliest bug found in the last 12 years.
Please note that the devices that are affected by this vulnerability are the devices acting as an SSL server terminating SSL connections or devices acting as an SSL Client initiating an SSL connection. Devices that are simply traversed by SSL traffic without terminating it are not affected. If you are using a Cisco device to connect to the Internet in any case, you can check here whether your device comes in the list of the equipments suspected to be affected by the Heart Bleed Bug.
