PT-2016-3853 · F5+1 · F5 Big-Ip Webaccelerator+16

Published

2016-05-13

·

Updated

2019-06-06

·

CVE-2015-8099

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 11.3.x through 11.4.x before 11.4.1 HF10 F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 11.5.x before 11.5.4 F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 11.6.x before 11.6.1 F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 12.x before 12.0.0 HF1 F5 BIG-IP AAM versions 11.4.x before 11.4.1 HF10 F5 BIG-IP AAM versions 11.5.x before 11.5.4 F5 BIG-IP AAM versions 11.6.x before 11.6.1 F5 BIG-IP AAM versions 12.x before 12.0.0 HF1 F5 BIG-IP DNS versions 12.x before 12.0.0 HF1 F5 BIG-IP Edge Gateway, WebAccelerator, and WOM version 11.3.0 F5 BIG-IP GTM versions 11.3.x through 11.4.x before 11.4.1 HF10 F5 BIG-IP GTM versions 11.5.x before 11.5.4 F5 BIG-IP GTM versions 11.6.x before 11.6.1 F5 BIG-IP PSM versions 11.3.x and 11.4.x before 11.4.1 HF10 Enterprise Manager versions 3.0.0 through 3.1.1 BIG-IQ Cloud and BIG-IQ Security versions 4.0.0 through 4.5.0 BIG-IQ Device versions 4.2.0 through 4.5.0 BIG-IQ ADC version 4.5.0 BIG-IQ Centralized Management version 4.6.0 BIG-IQ Cloud and Orchestration version 1.0.0
Description The issue allows remote attackers to cause a denial of service (High-Speed Bridge hang) via an invalid TCP segment when software SYN cookies are configured on virtual servers.
Recommendations For F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 11.3.x through 11.4.x before 11.4.1 HF10, update to version 11.4.1 HF10 or later. For F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 11.5.x before 11.5.4, update to version 11.5.4 or later. For F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 11.6.x before 11.6.1, update to version 11.6.1 or later. For F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM versions 12.x before 12.0.0 HF1, update to version 12.0.0 HF1 or later. For F5 BIG-IP AAM versions 11.4.x before 11.4.1 HF10, update to version 11.4.1 HF10 or later. For F5 BIG-IP AAM versions 11.5.x before 11.5.4, update to version 11.5.4 or later. For F5 BIG-IP AAM versions 11.6.x before 11.6.1, update to version 11.6.1 or later. For F5 BIG-IP AAM versions 12.x before 12.0.0 HF1, update to version 12.0.0 HF1 or later. For F5 BIG-IP DNS versions 12.x before 12.0.0 HF1, update to version 12.0.0 HF1 or later. For F5 BIG-IP Edge Gateway, WebAccelerator, and WOM version 11.3.0, update to a version that is not vulnerable. For F5 BIG-IP GTM versions 11.3.x through 11.4.x before 11.4.1 HF10, update to version 11.4.1 HF10 or later. For F5 BIG-IP GTM versions 11.5.x before 11.5.4, update to version 11.5.4 or later. For F5 BIG-IP GTM versions 11.6.x before 11.6.1, update to version 11.6.1 or later. For F5 BIG-IP PSM versions 11.3.x and 11.4.x before 11.4.1 HF10, update to version 11.4.1 HF10 or later. For Enterprise Manager versions 3.0.0 through 3.1.1, update to a version that is not vulnerable. For BIG-IQ Cloud and BIG-IQ Security versions 4.0.0 through 4.5.0, update to a version that is not vulnerable. For BIG-IQ Device versions 4.2.0 through 4.5.0, update to a version that is not vulnerable. For BIG-IQ ADC version 4.5.0, update to a version that is not vulnerable. For BIG-IQ Centralized Management version 4.6.0, update to a version that is not vulnerable. For BIG-IQ Cloud and Orchestration version 1.0.0, update to a version that is not vulnerable.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2015-8099

Affected Products

Big-Iq Adc
Big-Iq Centralized Management
Big-Iq Cloud
Big-Iq Cloud/Orchestration
Big-Iq Device
Big-Iq Security
Enterprise Manager
F5 Big-Ip Apm
F5 Big-Ip Analytics
F5 Big-Ip Dns
F5 Big-Ip Edge Gateway
F5 Big-Ip Gtm
F5 Big-Ip Ltm
F5 Big-Ip Link Controller
F5 Big-Ip Pem
F5 Big-Ip Wom
F5 Big-Ip Webaccelerator