This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
OpenSSL development team reports :
Major changes between OpenSSL 1.0.1e and OpenSSL 1.0.1f [6 Jan 2014] :
- Fix for TLS record tampering bug [CVE-2013-4353]
- Fix for TLS version checking bug [CVE-2013-6449]
- Fix for DTLS retransmission bug [CVE-2013-6450]
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 5.8
Family: FreeBSD Local Security Checks
Nessus Plugin ID: 71808 ()
CVE ID: CVE-2013-4353CVE-2013-6449CVE-2013-6450
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.