This script is Copyright (C) 2017 Tenable Network Security, Inc.
A service running on the remote host is affected by a denial of
According to its banner, the version of OpenSSL running on the remote
host is 1.1.0 prior to 1.1.0e. It is, therefore, affected by a denial
of service vulnerability that is triggered during a renegotiation
handshake in which the Encrypt-Then-Mac extension is negotiated when
it was not in the original handshake or vice-versa. An
unauthenticated, remote attacker can exploit this issue to cause
OpenSSL to crash, depending on which cipher suite is being used. Note
that both clients and servers are affected.
See also :
Upgrade to OpenSSL version 1.1.0e or later.
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.4
Public Exploit Available : true