FreeBSD : FreeBSD -- OpenSSL Remote DoS vulnerability (0fcd3af0-a0fe-11e6-b1cf-14dae9d210b8)
Medium Nessus Plugin ID 94492
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionDue to improper handling of alert packets, OpenSSL would consume an excessive amount of CPU time processing undefined alert messages.
Impact : A remote attacker who can initiate handshakes with an OpenSSL based server can cause the server to consume a lot of computation power with very little bandwidth usage, and may be able to use this technique in a leveraged Denial of Service attack.
SolutionUpdate the affected packages.