Our recent internal security scans indicate our Sophos email appliances might be suseptalbe to MITM attack based on CVE-2014-3511: clientHello fragmentation and protocol downgrade.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3511
Is there a patch release upcoming to address this?
This thread was automatically locked due to age.