CVE-2014-8730 "Poodle for TLS" vulnerability
Secure Connection Hijacking
The following IPS signature blocks any attack attempt:
TLS.Padding.Oracle.Information.DisclosureIt is available in IPS update 5.587.
FortiOS - As a workaround, disable hardware acceleration by applying the settings:
config system globalset virtual-server-hardware-acceleration disableendNote: The performance impact may be significant.