-bbc.co.uk is vulnerable to the DROWn attack!

Would not have believed it, but alas it seems likely… :o
Looked that domain up in the https everywhere atlas: https://www.eff.org/https-everywhere/atlas/domains/bbc.co.uk.html
Then scanned for DROWn and DANG:

Results for bbc.co.uk The following domain names are vulnerable to man-in-the-middle attacks. Attackers may be able to impersonate the server and steal or change data. Update server software at all IP addresses shown, and ensure SSLv2 is disabled. Vulnerable Domains: Vulnerable Because: pop3.kw.bbc.co.uk view certificate 132.185.132.80:143 vulnerable to CVE-2016-0703 132.185.132.80:993 vulnerable to CVE-2016-0703

Sites that use the certificates below are vulnerable to eavesdropping. Attackers may be able to decrypt recorded traffic and steal data.
Update server software at all IP addresses shown, and ensure SSLv2 is disabled.
Vulnerable Certificates: Vulnerable Because:
tlsmtp.bbc.co.uk
view certificate
132.185.160.172:25
supports SSLv2 export ciphers
132.185.160.173:25
supports SSLv2 export ciphers
132.185.161.172:25
supports SSLv2 export ciphers
132.185.161.173:25
supports SSLv2 export ciphers
passwordresetpp.selfservice.bbc.co.uk
view certificate
132.185.151.173:443
supports SSLv2
sip.bbc.co.uk
webconf.bbc.co.uk
webconf001.bbc.co.uk
sip.uktv.co.uk
webconf.uktv.co.uk
view certificate
132.185.151.234:443
supports SSLv2

Various sub/domains aren´t vulnerable :o
But their nameserver is vulnerable: -ns.bbc.co.uk

And this while they brought the DROWn news themselves: http://www.bbc.com/news/technology-35706730

polonus