Test ID:	1.3.6.1.4.1.25623.1.0.105716
Category:	F5 Local Security Checks
Title:	F5 BIG-IP - TCP vulnerability CVE-2015-8099
Summary:	Under limited conditions, an invalid TCP segment can lead to a Denial of Service for the High-Speed Bridge (HSB);on the following platforms: 3900, 6900, 8900, 8950, 11000, 11050, PB100 or PB200. This issue is only exposed on virtual servers while;Software SYN cookies are configured for use and currently engaged. The scope of the exposure is limited to the BIG-IP data plane. The;access vector is network based and authentication is not a requirement for attack. There is no control plane exposure to this issue.
Description:	Summary: Under limited conditions, an invalid TCP segment can lead to a Denial of Service for the High-Speed Bridge (HSB) on the following platforms: 3900, 6900, 8900, 8950, 11000, 11050, PB100 or PB200. This issue is only exposed on virtual servers while Software SYN cookies are configured for use and currently engaged. The scope of the exposure is limited to the BIG-IP data plane. The access vector is network based and authentication is not a requirement for attack. There is no control plane exposure to this issue. Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-8099 http://www.securitytracker.com/id/1035873 http://www.securitytracker.com/id/1035874
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.