This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote service is affected by a remote code execution
According to its banner, the remote host is running a version of
OpenSSL 1.0.1 prior to 1.0.1o. It is, therefore, affected by a remote
code execution vulnerability in the ASN.1 encoder due to an underflow
condition that occurs when attempting to encode the value zero
represented as a negative integer. An unauthenticated, remote attacker
can exploit this to corrupt memory, resulting in the execution of
See also :
Upgrade to OpenSSL version 1.0.1o or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false