Intrusion Prevention

OpenSSL.DTLS.ChangeCipherSpec.DoS

Description

This indicates an attack attempt against a Denial of Service vulnerability in OpenSSL.
The vulnerability is caused by an error when the vulnerable software handles a "DTLS ChangeCipherSpec" datagram before a "ClientHello". It allows a remote attacker to cause a DoS via sending crafted DTLS packet.

Affected Products

OpenSSL version 0.9.8i and earlier.

Impact

Denial of Service.

Recommended Actions

Upgrade to the latest version.

CVE References

CVE-2009-1386