IBM Security Bulletin: Vulnerability in SSLv3 affects IBM HTTP Server (CVE-2014-3566)
SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption (POODLE) attack. SSLv3 is enabled by default in IBM HTTP Server. CVE(s): CVE-2014-3566 Affected product(s) and affected version(s):...
from IBM Product Security Incident Response Team http://ibm.co/1yH4oqD
from IBM Product Security Incident Response Team http://ibm.co/1yH4oqD