Description

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

Remediation

References

CVE-2017-7671

Related Vulnerabilities

WordPress Plugin SecuPress Free-WordPress Security Security Bypass (1.4.13)

WordPress Plugin Ajax Gallery 'list.php' SQL Injection (3.0)

WordPress Plugin SMTP Mailer Cross-Site Request Forgery (1.0.6)

WordPress Plugin Traffic Analyzer SQL Injection (3.4.2)

WordPress Plugin SyntaxHighlighter Evolved Cross-Site Scripting (3.1.9)

Severity

High

Classification

CVE-2017-7671 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities