Red Hat · 389 Directory Server · CVE-2015-3230
**Name of the Vulnerable Software and Affected Versions**
389 Directory Server versions prior to 1.3.3.12
**Description**
The issue allows remote attackers to have an unspecified impact by requesting to use a disabled cipher, as the nsSSL3Ciphers preference is not enforced when creating an sslSocket.
**Recommendations**
For versions prior to 1.3.3.12, update to version 1.3.3.12 or later to resolve the issue.