February 2018
Intermediate to advanced
396 pages
9h 38m
English
Content preview from Advanced Infrastructure Penetration Testing
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
POODLE attack (CVE-2014-3566)
The Padding Oracle On Downgraded Legacy Encryption (POODLE) attack was discovered in 2014. This attack exploits the fact that many servers support SSLv3 on one hand and a block padding vulnerability on the other hand. Following diagram demonstrates POODLE attack:
In general, as a first step, a client sends the supported TLS versions. In this case, the attacker intercepts the traffic performing a man-in-the-middle attack and mimics the server, until the connection is downgraded to SSLv3. If the connection is established, the attacker exploits a cipher block chaining vulnerability, by manipulating the padding ...