POODLE attack

Get Certified Get Ahead

Padding Oracle on Downgraded Legacy Encryption.

POODLE is referred to as both a downgrade attack, and a man-in-the-middle (MITM) exploit. It essentially forces a TLS encrypted session to downgrade to the deprecated SSL 3.0 or TLS 1.0 – 1.2 protocols. If the attack successfully forces the downgrade to a weaker encryption protocol, it allows the attacker to perform a MITM attack capturing and decrypting all the data in the session.

Share this Post