POODLE attack

GPTKB entity

Statements (26)
Predicate Object
gptkbp:instanceOf gptkb:security
cybercrime
gptkbp:affects gptkb:SSL_3.0
TLS 1.0 (in some implementations)
gptkbp:category crypt
internet security
gptkbp:disclosedDate 2014-10-14
gptkbp:discoveredBy gptkb:Bodo_Möller
gptkb:Krishna_Bhargavan
gptkb:Thai_Duong
gptkbp:enables man-in-the-middle attack
decryption of encrypted data
gptkbp:exploits padding oracle vulnerability
gptkbp:fullName gptkb:Padding_Oracle_On_Downgraded_Legacy_Encryption
https://www.w3.org/2000/01/rdf-schema#label POODLE attack
gptkbp:impact confidentiality breach
gptkbp:mitigatedBy disabling SSL 3.0
using TLS 1.2 or higher
gptkbp:notableFor prompting deprecation of SSL 3.0
gptkbp:relatedTo gptkb:BEAST_attack
gptkb:Lucky_Thirteen_attack
gptkbp:target web browsers
HTTPS connections
gptkbp:vulnerableTo gptkb:CVE-2014-3566
gptkbp:bfsParent gptkb:SSL/TLS
gptkbp:bfsLayer 4