Description

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

Remediation

References

CVE-2017-7671

Related Vulnerabilities

WordPress Plugin Simple Job Board Cross-Site Scripting (2.4.3)

WordPress Plugin Chameleoni Jobs Multiple Cross-Site Scripting Vulnerabilities (1.2.2)

Chamilo Improper Privilege Management Vulnerability (CVE-2022-27421)

MySQL CVE-2020-14800 Vulnerability (CVE-2020-14800)

Apache HTTP Server Off-by-one Error Vulnerability (CVE-2005-1268)

Severity

High

Classification

CVE-2017-7671 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities