Jump to content

POODLE


James

Recommended Posts

POODLE means Padding Oracle on Downgraded Legacy Encryption. It allows an attacker to eavesdrop on encrypted HTTPS communications using the SSL 3.0 protocol.

To protect a server against POODLE attacks you can disable SSL 3.0, or TLS 1.1 and TLS 1.2.

The POODLE vulnerability was discovered by Google in 2014, reference CVE-2014-3566.

Additional information is available from https://www.makeuseof.com/what-is-the-poodle-attack/

Link to comment
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
×
×
  • Create New...