Don_Baker_24606NimbostratusMar 09, 2016Is version 11.5.3.0.0.163 Vulnerable to these attacks Beast/Poddle TLS/SSL Server is enabling the BEAST attack TLS/SSL Server is enabling the POODLE attack
1 ReplyReplies sorted by Most LikedSort ByMost LikedOldestNewestCharlesCSCirrusMar 09, 2016According to SOL13400, version 11.5.3 is vulnerable to BEAST but you can mitigate the issue by using only TLS1.1, TLS1.2, or RC4-SHA ciphers. According to SOL15702, 11.5.3 is not vulnerable to POODLE. You can also provide additional mitigation by preventing use of SSLv3 ciphers.
CharlesCSCirrusMar 09, 2016According to SOL13400, version 11.5.3 is vulnerable to BEAST but you can mitigate the issue by using only TLS1.1, TLS1.2, or RC4-SHA ciphers. According to SOL15702, 11.5.3 is not vulnerable to POODLE. You can also provide additional mitigation by preventing use of SSLv3 ciphers.
Recent DiscussionsSMS server with BIGIPF5 terminal - help to run commands - disk space fullCan iRule be used to perform exception of IPI category based on Geolocation[ASM] - what is "Browser Challange file" ?LDAPS and renegotiation
Related ContentOWASP Automated Threats - OAT-014 Vulnerability ScanningReviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual ServerVulnerability CVE-2023-45648 in ApacheTomcatRe: Mitigation of OWASP API6: 2019 Mass Assignment vulnerability using F5 Distributed Cloud PlatformReviewing vulnerability scanner results for an APM protected Virtual Server - part two