Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

OpenSSL 0.9.8s / 1.0.0f DTLS Denial of Service

Medium

Synopsis

The remote web server is affected by multiple vulnerabilities.

Description

OpenSSL version 0.9.8s and 1.0.0f are potentially affected by a flaw in the implementation of the fix for CVE-2011-4108. The Datagram Transport Layer Security (DTLS) implementation is vulnerable to a denial of service attack.

Solution

Upgrade to OpenSSL 0.9.8t, 1.0.0g, or later.