How does heartbleed work? This is a quick question that comes in everyone’s mind when they first hear about heartbleed.
Heartbleed has made it to the news and …… so on.
There are several POC and articles available in the market for#HeartBleed but there are very few explanation about it.
For those of you who knows the concept of “heart beat” that is, keep-alive it is easier to understand that the data-length is wrongly specified and there is no verification in check for it. That’s all!
This is a BUG and a possible vulnerability.
Bottomline: If something wasn’t in your “memory” , it was never stolen.
Source : How does heartbleed work?