Padding Oracle On Downgraded Legacy Encryption
GPTKB entity
Statements (19)
Predicate | Object |
---|---|
gptkbp:instanceOf |
gptkb:security
|
gptkbp:abbreviation |
gptkb:POODLE
|
gptkbp:affects |
gptkb:SSL_3.0
|
gptkbp:category |
crypt
man-in-the-middle attack |
gptkbp:discoveredBy |
gptkb:Bodo_Möller
gptkb:Thai_Duong gptkb:Krishna_Dole |
gptkbp:discoveredIn |
2014
|
gptkbp:exploits |
gptkb:padding_oracle_attack
|
https://www.w3.org/2000/01/rdf-schema#label |
Padding Oracle On Downgraded Legacy Encryption
|
gptkbp:impact |
allows plaintext recovery
|
gptkbp:mitigatedBy |
disable SSL 3.0
use TLS 1.1 or higher |
gptkbp:publicDisclosure |
2014-10-14
|
gptkbp:target |
CBC mode ciphers
|
gptkbp:vulnerableTo |
gptkb:CVE-2014-3566
|
gptkbp:bfsParent |
gptkb:POODLE_attack
|
gptkbp:bfsLayer |
5
|