PT-2018-17032 · F5 · F5 Big-Ip Dns

Published

2018-07-25

Updated

2019-10-03

CVE-2018-5538

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions F5 BIG-IP DNS versions 13.1.0 through 13.1.0.7 F5 BIG-IP DNS versions 12.1.3 through 12.1.3.5

Description The issue allows NOTIFY messages to be accepted on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable dnsexpress.notifyport is set to any value other than the default of 0.

Recommendations For F5 BIG-IP DNS versions 13.1.0 through 13.1.0.7, set the db variable dnsexpress.notifyport to its default value of 0 to prevent unauthorized NOTIFY messages. For F5 BIG-IP DNS versions 12.1.3 through 12.1.3.5, set the db variable dnsexpress.notifyport to its default value of 0 to prevent unauthorized NOTIFY messages.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-5538

Affected Products

F5 Big-Ip Dns

PT-2018-17032 · F5 · F5 Big-Ip Dns

CVE-2018-5538

Related Identifiers

Affected Products

References · 3