This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Patch availability for CVS-2014-3511? New SSL MITM attack

Our recent internal security scans indicate our Sophos email appliances might be suseptalbe to MITM attack based on CVE-2014-3511: clientHello fragmentation and protocol downgrade.

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3511

Is there a patch release upcoming to address this?

This thread was automatically locked due to age.

Parents

0 tmackey over 10 years ago

Such a backwards way of doing things, most compaines have a formal ticketing system to send these things rather than rely on customers posting to forums or send emails to generic email addressess that rarely, if ever, get a response. It makes working with them a pain.
:53207
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 tmackey over 10 years ago

Such a backwards way of doing things, most compaines have a formal ticketing system to send these things rather than rely on customers posting to forums or send emails to generic email addressess that rarely, if ever, get a response. It makes working with them a pain.
:53207
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data