OpenSSL 1.0.x < 1.0.2n DoS
Low Nessus Network Monitor Plugin ID 700523
SynopsisThe remote web server is running an outdated instance of OpenSSL and is affected by a Denial of Service (DoS) attack vector.
DescriptionAccording to its banner, the version of OpenSSL on the remote host is version 1.0.x prior to 1.0.2n. It is, therefore, affected by a DoS vulnerability that allows potential recovery of private key information or failure to properly encrypt data.
SolutionUpgrade OpenSSL to version 1.0.2n or higher