The Poodle SSLv3 vulnerability and its impact on NetWare 6.5 sp8

  • 7015837
  • 28-Oct-2014
  • 27-May-2015

Environment

Novell NetWare 6.5 Support Pack 8

Situation

Unlike many other vulnerabilities this security issue is not within code but within a protocol.  Therefore, it is not about a particular OS that needs to be patched.  Resolving this vulnerability requires a review of an enviroment's ability to remove SSLv3 services and use TLS instead.  Both clients and servers need to be reviewed as to whether their applications and services still require SSLv3.

Resolution

NetWare services are affected by this vulnerability.  Engineering is currently looking into this.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.