Statements (23)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:security
|
| gptkbp:access |
No
|
| gptkbp:affects |
gptkb:SSL_3.0
|
| gptkbp:alsoKnownAs |
gptkb:POODLE
|
| gptkbp:citation |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
https://www.openssl.org/~bodo/ssl-poodle.pdf |
| gptkbp:complexity |
Low
|
| gptkbp:describes |
A vulnerability in SSL 3.0 that allows a man-in-the-middle attacker to decrypt ciphertext using a padding oracle attack.
|
| gptkbp:discoveredBy |
gptkb:Bodo_Möller
gptkb:Krishna_Bhargavan gptkb:Thai_Duong |
| gptkbp:exploits |
gptkb:Padding_Oracle
|
| gptkbp:hasCVSSScore |
4.3
|
| gptkbp:impact |
integrity
confidentiality man-in-the-middle attack |
| gptkbp:mitigatedBy |
Disable SSL 3.0
Use TLS instead of SSL 3.0 |
| gptkbp:publicationDate |
2014-10-14
|
| gptkbp:vectorFor |
gptkb:network_protocol
|
| gptkbp:bfsParent |
gptkb:POODLE_attack
|
| gptkbp:bfsLayer |
6
|
| https://www.w3.org/2000/01/rdf-schema#label |
CVE-2014-3566
|