OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
Schweregrad:: Mittel
Hinweisdatum: 21 Juli 2015
Beschreibung
The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1006119