Following the major Heartbleed vulnerability, OpenSSL will again experience another significant update. A denial-of-service (DoS) vulnerability classified with a "high severity" rating, was reported on February 26 by David Ramos of Stanford University (CVE-2015-0291). CVE-2015-0291 being the worst of a dozen vulnerabilities found in OpenSSL. The following vulnerabilities were also found in OpenSSL,
CVE-2015-1635 Identifies the latest vulnerability in HTTP.sys of Microsoft's Window's operating system, affecting Internet Information Server (IIS). On Tuesday April 14, Microsoft released security update KB3042553 addressing the vulnerability. If you would like to test your servers for this vulnerability, please use the following Python Script. Please be advised, this may crash your server! I assume NO responsibility for any and all damages done to your system(s).