Oval Definition:oval:org.cisecurity:def:455
Revision Date:2016-05-14Version:11
Title:Vulnerability in SSLv3 affects sendmail (CVE-2014-3566)
Description:Product could allow a remote attacker to obtain sensitive information, caused by a design error when using the SSLv3 protocol. A remote user with the ability to conduct a man-in-the-middle attack could exploit this vulnerability via a POODLE (Padding Oracle On Downgraded Legacy Encryption) attack to decrypt SSL sessions and access the plaintext of encrypted connections.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2014-3566
Platform(s):IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis
  • IBM AIX 6100-08 meets CVE-2014-3566
  • IBM AIX 6100-08 is installed
  • AND NOT All filesets for APAR IV73416 are installed
  • OR IBM AIX 7100-02 meets CVE-2014-3566
  • IBM AIX 7100-02 is installed
  • AND NOT All filesets for APAR IV73418 are installed
  • OR IBM AIX 6100-09 meets CVE-2014-3566
  • IBM AIX 6100-09 is installed
  • AND NOT All filesets for APAR IV73417 are installed
  • OR IBM AIX 7100-03 meets CVE-2014-3566
  • IBM AIX 7100-03 is installed
  • AND NOT All filesets for APAR IV73419 are installed
  • BACK