The host is installed with OpenSSL 1.0.1 before 1.0.1k or 1.0.0 before 1.0.0p and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.