The host is installed with OpenSSL before 0.9.8h and is prone to an unspecified vulnerability. A flaw is present in the application, which uses an incorrect modular reduction algorithm in its implementation of the P-256 and P-384 NIST elliptic curves. Successful exploitation allows remote attackers to obtain the private key of a TLS server via multiple handshake attempts.