CVE-2014-6031

Name of the Vulnerable Software and Affected Versions: F5 BIG-IP systems versions 10.x through 10.2.4 before HF12 F5 BIG-IP systems versions 11.x through 11.2.1 before HF15 F5 BIG-IP systems versions 11.3.x F5 BIG-IP systems versions 11.4.x through 11.4.1 before HF9 F5 BIG-IP systems versions 11.5.x through 11.5.2 before HF1 F5 BIG-IP systems version 11.6.0 before HF4 Enterprise Manager versions 2.1.0 through 2.3.0 Enterprise Manager versions 3.x through 3.1.1 before HF5

Description: A buffer overflow issue in the mcpq daemon of F5 BIG-IP systems allows remote authenticated administrators to cause a denial of service via unspecified vectors.

Recommendations: For F5 BIG-IP systems versions 10.x through 10.2.4 before HF12, update to version 10.2.4 HF12 or later. For F5 BIG-IP systems versions 11.x through 11.2.1 before HF15, update to version 11.2.1 HF15 or later. For F5 BIG-IP systems versions 11.3.x, update to a version outside of the 11.3.x range. For F5 BIG-IP systems versions 11.4.x through 11.4.1 before HF9, update to version 11.4.1 HF9 or later. For F5 BIG-IP systems versions 11.5.x through 11.5.2 before HF1, update to version 11.5.2 HF1 or later. For F5 BIG-IP systems version 11.6.0 before HF4, update to version 11.6.0 HF4 or later. For Enterprise Manager versions 2.1.0 through 2.3.0, update to version 3.x and then to version 3.1.1 HF5 or later. For Enterprise Manager versions 3.x through 3.1.1 before HF5, update to version 3.1.1 HF5 or later.