Solutions

SSL 3.0 Vulnerability - Poodle - Serena Mainframe Products



ID:    S140814
Published:    17 October 2014
Updated:    17 October 2014

Operating System(s)

  • Z/OS

Product(s)

  • ChangeMan SSM
  • ChangeMan ZDD
  • ChangeMan ZMF
  • ChangeMan ZMF Client Pack
  • Comparex
  • StarTool DA
  • StarTool FDM
  • StarTool IOO
 

Description

A new security vulnerability called POODLE (Padding Oracle On Downgraded Legacy Encryption) is currently in the news. This is the result of a flaw in the SSL 3.0 protocol and the specific attack affects web communications.

For a detailed write-up of the POODLE vulnerability, refer to https://www.openssl.org/~bodo/ssl-poodle.pdf

Resolution

Serena Mainframe Products are unaffected by the POODLE vulnerability.  This includes ChangeMan ZMF, ChangeMan ZMF Client Pack, ChangeMan SSM, Comparex, StarTool DA, StarTool FDM, and StarTool IOO.


Rate this Solution

Find Answers

Type a question or describe what you are looking for below

My Recent Searches

Welcome kb sso

Additional Assistance

  • Submit a Case Online
  • FAQs