Vulenerabilities on SOI

Document ID : KB000103904
Last Modified Date : 02/07/2018
Show Technical Document Details
Issue:
We have installed SOI in our setup.

Below mentioned Vulnerabilities are identified.
SSLv3 Padding Oracle Attack Information Disclosure Vulnerability (POODLE) CVE-2014-3566 on Port  7443
SSL Server Has SSLv3 Enabled Vulnerability on Port  7443
Environment:
SOI 4.2
Resolution:
Modify Server.xml file under
Drive:\Program Files (x86)\CA\SOI\tomcat\conf folder


From
--sslEnabledProtocols="TLSV1.0,TLSv1.1,TLSv1.2"

To
--sslEnabledProtocols="TLSv1.1,TLSv1.2"

Restart the services
Additional Information:
http://www.ca.com/us/support/ca-support-online/product-content/recommended-reading/security-notices/sslv3-poodle-vulnerability-cve-2014-3566-product-guidance.aspx
https://communities.ca.com/thread/241739774