A specially crafted reply to DNS queries from RESOLV::lookup may consume excess system resources or possibly lead to a crash and failover. (CVE-2016-6876)
Impact
The BIG-IP system may consume excess system resources, or experience a Traffic Management Microkernel (TMM) core and fail over. This vulnerability can only be triggered if you use the RESOLV::lookup iRule command to resolve PTR records. Other configurations that use the** RESOLV::lookup** iRule command are not affected by this vulnerability.
CPE | Name | Operator | Version |
---|---|---|---|
big-ip afm | eq | 11.4.0 | |
big-ip afm | eq | 11.4.1 | |
big-ip afm | eq | 11.5.0 | |
big-ip afm | eq | 11.5.1 | |
big-ip afm | eq | 11.5.2 | |
big-ip afm | eq | 11.5.3 | |
big-ip afm | eq | 11.5.4 | |
big-ip afm | eq | 11.6.0 | |
big-ip afm | eq | 11.6.1 | |
big-ip afm | eq | 12.0.0 |