CVE-2017-0303

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions 11.5.1 through 11.6.1 F5 BIG-IP versions 12.0.0 through 12.1.2 F5 BIG-IP version 13.0.0

Description The issue is related to errors in the cleanup mechanism of the SOCKS proxy server in F5 BIG-IP software. This could allow a remote attacker to cause a denial of service. Under certain conditions, connections handled by a Virtual Server with an associated SOCKS profile may not be properly cleaned up, potentially leading to resource starvation. Over time, this may cause the BIG-IP to be unable to process further connections.

Recommendations For F5 BIG-IP versions 11.5.1 through 11.6.1, consider restarting TMM to remove connections left in the connection table as a temporary workaround. For F5 BIG-IP versions 12.0.0 through 12.1.2, consider restarting TMM to remove connections left in the connection table as a temporary workaround. For F5 BIG-IP version 13.0.0, consider restarting TMM to remove connections left in the connection table as a temporary workaround. At the moment, there is no information about a newer version that contains a fix for this vulnerability.