OpenSSL TLS Handshake Null Pointer Dereference Denial Of Service Vulnerability
Gravedad: Medio
Fecha recomendada: 21 de julio de 2015
Descripción
The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1006119