The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.2.1 through 11.3.0, and BIG-IP PSM 11.2.1 through 11.4.1 allows remote attackers to cause a denial of service (Traffic Management Microkernel restart) via a fragmented packet.
References
Link | Resource |
---|---|
http://www.securitytracker.com/id/1033578 | |
https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17155.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-09-18 07:59
Updated : 2015-09-22 11:49
NVD link : CVE-2015-4638
Mitre link : CVE-2015-4638
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
f5
- big-ip_global_traffic_manager
- big-ip_link_controller
- big-ip_protocol_security_module
- big-ip_edge_gateway
- big-ip_advanced_firewall_manager
- big-ip_webaccelerator
- big-ip_application_security_manager
- big-ip_local_traffic_manager
- big-ip_analytics
- big-ip_policy_enforcement_manager