IBM Security Bulletin: Vulnerability in SSLv3 affects IBM Connections (CVE-2014-3566)

SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption (POODLE) attack, which is a man-in-the-middle attack affecting Web browsers. IBM Connections utilizes IBM WebSphere Application Server and IBM HTTP...



from IBM Product Security Incident Response Team http://ibm.co/1qsBwQG