Family: Fedora Local Security Checks --> Category: infos
Fedora Core 1 2004-095: openssl Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the openssl package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory FEDORA-2004-095 (openssl).
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and
This update includes OpenSSL packages to fix two security issues
affecting OpenSSL 0.9.7a which allow denial of service attacks
CVE-2004-0079 and CVE CVE-2003-0851.
Also included are updates for the OpenSSL 0.9.6 and 0.9.6b
compatibility libraries included in Fedora Core 1, fixing a separate
issue which could also lead to a denial of service attack
Solution : http://www.fedoranews.org/updates/FEDORA-2004-095.shtml
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.