Description
The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack.
Remediation
References
Related Vulnerabilities
MySQL CVE-2014-4258 Vulnerability (CVE-2014-4258)
WordPress Plugin AdRotate-Ad manager & AdSense Ads 'adrotate-out.php' SQL Injection (3.6.6)
Internet Information Services Other Vulnerability (CVE-2000-0778)
WordPress Plugin Google +1 by BestWebSoft Cross-Site Scripting (1.1.6)
WordPress Plugin Modula Image Gallery Cross-Site Scripting (2.2.4)