|CATEGORY: Web Servers||RISK: Medium||ADDED: 28 jan 2012|
The remote host may be affected by a denial of service vulnerability.
According to its banner, the remote web server is running OpenSSL version 1.0.0f. This version has a flaw in the fix for CVE-2011-4108 such that Datagram Transport Layer Security (DTLS) applications that use it are vulnerable to a denial of service attack.
Upgrade to OpenSSL 1.0.0g or later.
Medium / CVSS Base Score : 5.0