X-Cart: shopping cart software

X-Cart forums (https://forum.x-cart.com/index.php)
-   X-Payments issues & questions (https://forum.x-cart.com/forumdisplay.php?f=50)
-   -   POODLE vulnerability in SSLv3 (https://forum.x-cart.com/showthread.php?t=70268)

rct 03-12-2015 05:40 AM

Re: POODLE vulnerability in SSLv3
 
Quote:

Originally Posted by totaltec
Me too, had several client sited whose UPS shipping went down.


I used the following way to solve the UPS problem.
http://forum.x-cart.com/showpost.php?p=379525&postcount=98
Hope it helps

totaltec 03-12-2015 05:53 AM

Re: POODLE vulnerability in SSLv3
 
Quote:

Originally Posted by rct
I used the following way to solve the UPS problem.
http://forum.x-cart.com/showpost.php?p=379525&postcount=98
Hope it helps

Thanks, we already fixed them of course. Just SSL/TLS problems that are solved by the patch.

BCSE 03-12-2015 06:05 AM

Re: POODLE vulnerability in SSLv3
 
Yes we've fixed several clients as well here.

Carrie

qualiteam 03-12-2015 07:59 AM

Re: POODLE vulnerability in SSLv3
 
Hello!

The X-Cart 4 dev team has investigated the issue and the problem may be in the "unofficial" patches which were made available for downloading 6 years ago in this forum thread:
http://forum.x-cart.com/showthread.php?t=47262

The patches will likely break the UPS integration (and, perhaps, some custom payment integrations) in the following X-Cart versions: 3.5.x, 4.0.x, 4.1.x and 4.2.0-4.2.1.

So, if you have these patches installed in your store, you may have to revert them to get this issue fixed.

cherie 03-12-2015 10:03 AM

Re: POODLE vulnerability in SSLv3
 
I think the better solution would have been to consider those X-Cart-provided patches official.


All times are GMT -8. The time now is 06:19 PM.

Powered by vBulletin Version 3.5.4
Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.