On F5 BIG-IP 13.1.0 - 13.1.0.3, when ASM and one or more of these modules (AFM/AVR) are provisioned, the Traffic Management Microkernel (TMM) may restart while processing DNS requests when the virtual server is configured with a DNS profile and the Protocol setting is set toTCP. (CVE-2018-5505)
Note: The BIG-IP Analytics (AVR) module is automatically enabled when BIG-IP AFM is provisioned.
Impact
An attacker may be able to execute a remote denial of service. Disabling any of the components mentioned in the description (for example, removing the DNS profile from the virtual server) avoids the issue. Virtual servers configured with UDP for the Protocol setting are not affected.