SSL Broken Again – Google’s POODLE Affects Oodles

Another challenge for internet security

97% of SSL web servers are likely to be vulnerable to POODLE, a vulnerability that can be exploited in version 3 of the SSL protocol. POODLE, in common with BEAST, allows a man-in-the-middle attacker to extract secrets from SSL sessions by forcing the victim’s browser into making many thousands of similar requests. As a result of the fallback behaviour in all major browsers, connections to web servers that support both SSL 3 and more modern versions of the protocol are also at risk.

http://news.netcraft.com/archives/2014/10/15/googles-poodle-affects-oodles.html

Leave a Reply