SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Router/Bridge/Hub)  >   F5 BIG-IP Vendors:   F5 Networks
F5 BIG-IP TCP Segment Processing Flaw Lets Remote Users Deny Service
SecurityTracker Alert ID:  1035874
SecurityTracker URL:  http://securitytracker.com/id/1035874
CVE Reference:   CVE-2015-8099   (Links to External Site)
Date:  May 12 2016
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in F5 BIG-IP. A remote user can cause denial of service conditions on the target system.

A remote user can send a specially crafted TCP segment to trigger denial of service conditions on the target High-Speed Bridge (HSB) data plane.

The control plane is not affected.

The following platforms are affected: 3900, 6900, 8900, 8950, 11000, 11050, PB100, and PB200.

Virtual servers that have Software SYN cookies configured for use and activate are affected.
Impact:   A remote user can cause denial of service conditions on the data plane.
Solution:   The vendor has issued a fix.

The vendor's advisory is available at:

https://support.f5.com/kb/en-us/solutions/public/k/35/sol35358312.html
Vendor URL:  support.f5.com/kb/en-us/solutions/public/k/35/sol35358312.html (Links to External Site)
Cause:   State error

Message History:   None.

 Source Message Contents


[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC