The POODLE Bites Again: TLS 1.x Padding Vulnerability

Submitted on 9. December 2014 - 17:21 by rischi.
Last update on 10. December 2014 - 13:11.

IDs:

CVE-2014-8730

Keywords:

OpenSSL, TLS, POODLE

Description:

A new TLS problem has been announced which is related to the POODLE attack on SSLv3. The vulnerability affects TLS 1.x implementation which do not correctly verify the TLS padding.

Airlock is not affected because OpenSSL is not vulnerable.

Resolution:

no action required

Component:

Airlock

Airlock Vulnerability Status:

Does not affect Airlock

Back-end Vulnerability Status:

Does not affect back-end behind Airlock

Reference:

The POODLE Bites Again

Main menu

Navigation

User menu

You are here

The POODLE Bites Again: TLS 1.x Padding Vulnerability

Main menu

Search form

Navigation

User menu

You are here

The POODLE Bites Again: TLS 1.x Padding Vulnerability