Vulnerability to Poodle attack

Rule from ssl under security category

What is a trooper!

we have submitted your edit to the community for review! We'll review and make it live on the site in the next few hours, the internet thanks you :).

Browse another section of the knowledge base



Suggest an edit

Cancel

This rule has no content... yet.

Add content to this rule

Or just browse to view rules that have content



 

POODLE stands for “Padding Oracle On Downgraded Legacy Encryption.” It relies on the presence of SSLv3 and/or TLS 1.0 - 1.2. An attacker could use this exploit to uncover encrypted data during its transmission between the client or the server.

How do I fix this?

Prevention of the POODLE exploit is achieved by disabling SSLv3 for client and server. However, some older clients and servers do not support TLS 1.0 and above. Therefore, the browser and server implementation of TLS_FALLBACK_SCSV is recommended to make downgrade attacks impossible.

Resources

Browse another section of the knowledge base



Signup icon
Ready to see how well your site scores?

Passmarked works best when you have an account. It allows you to keep a dashboard with saved data of the sites you have run through the system, we’ll alert you about important updates and you get access to the Passmarked Slack forum.

Sign up to get started