OpenSSL.ssl23.get.client.hello.Function.DoS
Description
This indicates an attack attempt against a Denial of Service Vulnerability in OpenSSL.
The vulnerability is caused by an error when vulnerable application handles a maliciously crafted SSL3 record. A remote attacker may be able to exploit this to cause a denial of service condition on affected systems.
Affected Products
OpenSSL Project OpenSSL prior to 0.9.8zd
OpenSSL Project OpenSSL prior to 1.0.0p
OpenSSL Project OpenSSL prior to 1.0.1k
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.openssl.org/news/secadv_20150108.txt
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |