Atacker can force client to downgradte to unencrypted cleartext mode operations.
vulners.com/securityvulns/securityvulns:doc:11047