McAfee Firewall Enterprise OpenSSL Information Disclosure (SB10071) (Heartbleed)
Medium Nessus Plugin ID 73834
The remote host is affected by an information disclosure vulnerability.
The remote host has a version of McAfee Firewall Enterprise installed that is affected by an out-of-bounds read error, known as Heartbleed, in the TLS/DTLS implementation due to improper handling of TLS heartbeat extension packets. A remote attacker, using crafted packets, can trigger a buffer over-read, resulting in the disclosure of up to 64KB of process memory, which contains sensitive information such as primary key material, secondary key material, and other protected content.