Yet another SSL Vulnerability

1 min read

This SSL 3.0 bug is not quite as dangerous as the Heartbleed. However, it still can provide information unintended to be seen by the attacker. POODLE, Padding Oracle On Downgraded Legacy Encryption, was discovered by a Google team and utilizes the compatibility mode of SSL 3.0 with an 18 year old outdated legacy encryption. This allows communicating with a lesser encryption method, which is now completely outdated but allows an attacker to view a communication between the host and client. This is only a medium threat, but still a threat.

Here is the article that I am referring to: POODLE exploits SSL 3.0 fallback

Here is a video describing how this actually works.

Yet another SSL Vulnerability

Like this:

More Stories

EMA said that hackers manipulated stolen documents before leaking them

EMA said that hackers manipulated stolen documents before leaking them

The 10 Phases Of Organizational Security Awareness

EMA said that hackers manipulated stolen documents before leaking them

EMA said that hackers manipulated stolen documents before leaking them

The 10 Phases Of Organizational Security Awareness

Critical flaws in Orbit Fox WordPress plugin allows site takeover

Share this:

Like this:

More Stories

EMA said that hackers manipulated stolen documents before leaking them

EMA said that hackers manipulated stolen documents before leaking them

The 10 Phases Of Organizational Security Awareness

You may have missed

EMA said that hackers manipulated stolen documents before leaking them

EMA said that hackers manipulated stolen documents before leaking them

The 10 Phases Of Organizational Security Awareness

Critical flaws in Orbit Fox WordPress plugin allows site takeover