CVE-2017-7671

Summary

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache Traffic Server5.2.0 to 5.3.2affected
Apache Software FoundationApache Traffic Server6.0.0 to 6.2.0affected
Apache Software FoundationApache Traffic Server7.0.0affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References