A vulnerability has been found in the OpenSSL security library's support for protocol version SSLv2 that allows an attacker to eavesdrop on encrypted communications and steal passwords and other sensitive data.
Opengear products disable SSLv2 so are not vulnerable. Moreover, Opengear products are not vulnerable to a related bug that allows a remote attacker to enable SSLv2 (CVE-2015-3197).
For more information, refer to: https://drownattack.com/
Comments
0 comments
Article is closed for comments.