F5 Local Security Checks : F5 BIG-IP - TCP vulnerability CVE-2015-8099

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.105716

Kategorie: F5 Local Security Checks

Titel: F5 BIG-IP - TCP vulnerability CVE-2015-8099

Zusammenfassung: Under limited conditions, an invalid TCP segment can lead to a Denial of Service for the High-Speed Bridge (HSB);on the following platforms: 3900, 6900, 8900, 8950, 11000, 11050, PB100 or PB200. This issue is only exposed on virtual servers while;Software SYN cookies are configured for use and currently engaged. The scope of the exposure is limited to the BIG-IP data plane. The;access vector is network based and authentication is not a requirement for attack. There is no control plane exposure to this issue.

Beschreibung: Summary:
Under limited conditions, an invalid TCP segment can lead to a Denial of Service for the High-Speed Bridge (HSB)
on the following platforms: 3900, 6900, 8900, 8950, 11000, 11050, PB100 or PB200. This issue is only exposed on virtual servers while
Software SYN cookies are configured for use and currently engaged. The scope of the exposure is limited to the BIG-IP data plane. The
access vector is network based and authentication is not a requirement for attack. There is no control plane exposure to this issue.

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2015-8099
http://www.securitytracker.com/id/1035873
http://www.securitytracker.com/id/1035874

Copyright Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.105716
Kategorie:	F5 Local Security Checks
Titel:	F5 BIG-IP - TCP vulnerability CVE-2015-8099
Zusammenfassung:	Under limited conditions, an invalid TCP segment can lead to a Denial of Service for the High-Speed Bridge (HSB);on the following platforms: 3900, 6900, 8900, 8950, 11000, 11050, PB100 or PB200. This issue is only exposed on virtual servers while;Software SYN cookies are configured for use and currently engaged. The scope of the exposure is limited to the BIG-IP data plane. The;access vector is network based and authentication is not a requirement for attack. There is no control plane exposure to this issue.
Beschreibung:	Summary: Under limited conditions, an invalid TCP segment can lead to a Denial of Service for the High-Speed Bridge (HSB) on the following platforms: 3900, 6900, 8900, 8950, 11000, 11050, PB100 or PB200. This issue is only exposed on virtual servers while Software SYN cookies are configured for use and currently engaged. The scope of the exposure is limited to the BIG-IP data plane. The access vector is network based and authentication is not a requirement for attack. There is no control plane exposure to this issue. Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-8099 http://www.securitytracker.com/id/1035873 http://www.securitytracker.com/id/1035874
Copyright	Copyright (C) 2016 Greenbone AG