Endpoint Vulnerability

SSL 3.0 Fallback protection

Description

OpenSSL 1.0.1 users should upgrade to 1.0.1j.OpenSSL 1.0.0 users should upgrade to 1.0.0o.OpenSSL 0.9.8 users should upgrade to 0.9.8zc. https://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv-00https://www.openssl.org/~bodo/ssl-poodle.pdfSupport for TLS_FALLBACK_SCSV was developed by Adam Langley and Bodo Moeller.

Affected Products

OpenSSL

References

CVE-2014-3566,