Is the Symantec Protection for SharePoint (SPSS) affected by the Heartbleed OpenSSL vulnerability (CVE-2014-0160)

Article:TECH216523  |  Created: 2014-04-09  |  Updated: 2014-04-11  |  Article URL http://www.symantec.com/docs/TECH216523
Article Type
Technical Solution


Issue



You wish to know if the Symantec Protection for SharePoint (SPSS) is affected by the "heartbleed" OpenSSL bug (CVE-2014-0160) that allows highly sensitive material such as primary key information to be accessed illicitly via a defect in the implementation of the TLS/DTLS (transport layer security protocols) heartbeat extension (RFC6520).

 

Solution



The Symantec Protection for SharePoint (SPSS) is not affected by this vulnerability, as it does not use the affected version of OpenSSL.

 



Article URL http://www.symantec.com/docs/TECH216523


Terms of use for this information are found in Legal Notices