OpenSSL ASN.1 Parser Multiple Remote DoS
High Nessus Plugin ID 11875
SynopsisThe remote host is affected by a heap corruption vulnerability.
DescriptionThe remote host seems to be running a version of OpenSSL that is older than 0.9.6k or 0.9.7c.
There is a heap corruption bug in this version that might be exploited by an attacker to execute arbitrary code on the remote host with the privileges of the remote service.
SolutionIf you are running OpenSSL, upgrade to version 0.9.6k or 0.9.7c or newer.