According to my replay of the bug, the customer's server uses RSA_EXPORT_... cipher suite, and the public key of the server certificate is 512 bits, and the server side does not send a server key exchange message. However, the current implementation needs a server key exchange message for RSA_EXPORT methods, which is not correct according to section 7.4.3, RFC2246.
"It is not legal to send the server key exchange message for the following key exchange methods:
RSA_EXPORT (when the public key in the server certificate is
less than or equal to 512 bits in length)