AIX 6.1 TL 9 : bos.net.tcp.server (U863668) (Bar Mitzvah)
Medium Nessus Plugin ID 87185
SynopsisThe remote AIX host is missing a vendor-supplied security patch.
DescriptionThe remote host is missing AIX PTF U863668, which is related to the security of the package bos.net.tcp.server.
Product could allow a remote attacker to obtain sensitive information, caused by a design error when using the SSLv3 protocol. A remote user with the ability to conduct a man-in-the-middle attack could exploit this vulnerability via a POODLE (Padding Oracle On Downgraded Legacy Encryption) attack to decrypt SSL sessions and access the plaintext of encrypted connections.
SolutionInstall the appropriate missing security-related fix.