The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://www.openssl.org/news/secadv_20040317.txt http://www.vuxml.org/freebsd/68233cba-7774-11d8-89ed-0020ed76ef5a.html

The following packages are affected: openssl openssl-beta CVE-2004-0079 The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.