PeerSec Networks Information for VU#577193
POODLE vulnerability in SSL 3.0
- Vendor Information Help Date Notified: 17 Oct 2014
- Statement Date:
- Date Updated: 20 Oct 2014
"MatrixSSL version support is configured with compile-time define, and we have disabled SSL3.0 by default since MatrixSSL 3.3.1 on July 16, 2012.
Anyone using MatrixSSL over the past 2 years would have had to manually enable SSL 3.0. Also, we do TLS style padding for SSL3.0 since the beginning for record encoding, however we canšt enforce it on decoding, so that was of limited use unless communicating with our own library"
We are not aware of further vendor information regarding this vulnerability.
There are no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.