IBM Security Bulletin: Disabling SSLv3 and SSLv2 in WebSphere Application Server Community Edition 3.0.0.4 for the SSLv3 CVE-2014-3566 POODLE issue

SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption (POODLE) attack. SSLv3 is enabled by default in IBM WebSphere Application Server Community Edition. CVE(s): CVE-2014-3566 Affected...



from IBM Product Security Incident Response Team http://ibm.co/1trc7Io