[Informational]  INF-2016-006:  Tableau Software Products Unaffected by CVE-2016-0800  “DROWN”

Version 4

    Summary: On March 1, 2016, a new vulnerability  in OpenSSL that affects servers using SSLv2 was revealed: CVE-2016-0800. The vulnerability, also known as DROWN,  is an attack that could decrypt secure HTTPS communications.

     

    Tableau uses a system that does not allow the SSLv2 algorithm to be used. After thorough review, our determination is that Tableau Products and Services are not vulnerable to this issue.

     

    NVD Announcement for  CVE -CVE-2016-0800