Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

what version of openssl is used by ACE4710

ACE 4710 A4(x.x) ssl-proxy is affected by openssl CVE-2014-0224(SSL/TLS MITM vulnerability) ?

 

I read CSCup22544, It seem to be contains both of ssl server-side and ssl client-side extent of the impact.

In terms of ssl server-side, i think this vulnerability is not affect  for without server using openssl 1.0.1/1.0.2.

 

---------------------------------------

  *  OpenSSL 1.0.1 release date is 2012/3/14

  *  ACE 4710 A4 (2.2) release date is 2011/10/18

---------------------------------------

 

 *  TLS v1.1/1.2 is supported from openssl 1.0.1

 *  TLS v1.1/1.2 is supported from ACE4710 A5(3.0)

---------------------------------------


I think ACE 4710 A4(x.x) is using openssl 0.9.x and not using 1.0.1, is it right?

And openssl 1.0.1 is used from ACE 4710 A5(3.0) or later?

Everyone's tags (1)
283
Views
0
Helpful
0
Replies