Posts in ‘SAS Cloud Operations’

Sort by: Most comments
 

Welcome to Our Technical Updates Blog

Welcome to our new blog, Data Protection Technical Updates. Check this site often for information on new product releases, enhancements, patches, and more.

 

SSL v3.0 Vulnerability (CVE-2014-3566)

Many products implementing TLS-based services allow for fallback to SSL v3.0 for compatibility reasons.  CVE-2014-3566,  published 14 October 2014, identified a vulnerability that could expose systems to man-in-the-middle attacks when such fallback is permitted. Details can be found at: CVE-2014-3566. Exploitation of this vulnerability would require a sophisticated attacker to…