The host is installed with OpenSSL 1.1.0 before 1.1.0e and is prone to a denial of service vulnerability. A flaw is present in the application, which fails handle a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa). Successful exploitation can cause OpenSSL to crash (dependent on ciphersuite).