Description

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

Remediation

References

CVE-2017-7671

Related Vulnerabilities

WordPress Plugin Community by PeepSo-Social Network, Membership, Registration, User Profiles Multiple Vulnerabilities (1.11.5)

Elgg Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0234)

MySQL CVE-2014-2450 Vulnerability (CVE-2014-2450)

MediaWiki CVE-2022-28204 Vulnerability (CVE-2022-28204)

Drupal Core 4.5.x Session Fixation (4.5.0 - 4.5.7)

Severity

High

Classification

CVE-2017-7671 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities