TLS-POODLE-Vulnerability/EN

Aus Siwecos
Version vom 7. Mai 2020, 10:40 Uhr von Siwebot (Diskussion | Beiträge)
(Unterschied) ← Nächstältere Version | Aktuelle Version (Unterschied) | Nächstjüngere Version → (Unterschied)
Wechseln zu: Navigation, Suche

Check for the TLS-POODLE vulnerability

If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.

Result positive Not vulnerable to TLS POODLE.
Result negativ Vulnerable to TLS POODLE.
Description The server is vulnerable to a variant of the POODLE attack on TLS, which allows an attacker to decrypt the communication.
Background There is a variant of the POODLE attack which also attacks newer TLS versions. This is possible due to an implementation error in the TLS servers.
Consequence The server is vulnerable through an vulnerability that allows an attacker to decrypt the communication.
Solution/Tips If vulnerability was reported, update the TLS implementation on your server immediately.