PT-2018-17032 · F5 · F5 Big-Ip Dns

Publicado

2018-07-25

Atualizado

2019-10-03

CVE-2018-5538

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions F5 BIG-IP DNS versions 13.1.0 through 13.1.0.7 F5 BIG-IP DNS versions 12.1.3 through 12.1.3.5

Description The issue allows NOTIFY messages to be accepted on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable dnsexpress.notifyport is set to any value other than the default of 0.

Recommendations For F5 BIG-IP DNS versions 13.1.0 through 13.1.0.7, set the db variable dnsexpress.notifyport to its default value of 0 to prevent unauthorized NOTIFY messages. For F5 BIG-IP DNS versions 12.1.3 through 12.1.3.5, set the db variable dnsexpress.notifyport to its default value of 0 to prevent unauthorized NOTIFY messages.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2018-5538

Produtos afetados

F5 Big-Ip Dns

PT-2018-17032 · F5 · F5 Big-Ip Dns

CVE-2018-5538

Identificadores relacionados

Produtos afetados

Referências · 3