PT-2016-6011 · F5 · F5 Big-Ip

Published

2016-06-07

Updated

2016-06-09

CVE-2016-4545

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions F5 BIG-IP version 11.5.4

Description The issue allows remote attackers to cause a denial of service, resulting in resource consumption and a Traffic Management Microkernel restart. This occurs when an SSL alert is sent during the handshake, and SSL profiles are enabled.

Recommendations For F5 BIG-IP version 11.5.4, consider disabling SSL profiles as a temporary workaround to minimize the risk of exploitation. Restrict access to the SSL handshake process to prevent remote attackers from sending malicious SSL alerts.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-4545

Affected Products

F5 Big-Ip

PT-2016-6011 · F5 · F5 Big-Ip

CVE-2016-4545

Weakness Enumeration

Related Identifiers

Affected Products

References · 4