CCS Injection Vulnerability Detection Tool
OpenSSL released a security bulletin about the vulnerability CVE-2014-0224 and released the latest OpenSSL version that has fixed this vulnerability on June 5, 2014. Since this vulnerability is caused by a design flaw in OpenSSLChangeCipherSpec, it is called a CCS injection vulnerability. An attacker can launch a man-in-the-middle attack and exploit this vulnerability to tamper with or monitor data transmitted via SSL encryption.