F5 Networks BIG-IP : OpenSSL vulnerability (K16321)
Medium Nessus Plugin ID 86271
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionThe SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (s2_lib.c assertion failure and daemon exit) via a crafted CLIENT-MASTER-KEY message. (CVE-2015-0293)
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K16321.