Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.Install Now
Available for macOS, Windows, and Linux
OpenSSL OCSP Status Request extension unbounded memory growth Vulnerability (Windows)
Denial of Service
6 years ago
4 years ago
This host is running OpenSSL and prone to denial of service vulnerability.
OpenSSL suffers from the possibility of DoS attack through sending a large OCSP Status Request extensions which lead to unbounded memory growth on the server which in turn lead to denial of service.
OpenSSL 1.1.0 and previous versions.
OpenSSL 1.1.0 users should upgrade to 1.1.0a. OpenSSL 1.0.2 users should upgrade to 1.0.2i. OpenSSL 1.0.1 users should upgrade to 1.0.1u.