Lucene search
F5F5:K52638558HistoryAug 30, 2016 - 12:00 a.m.
K52638558 : RESOLV::lookup iRule command vulnerability CVE-2016-6876
2016-08-3000:00:00
my.f5.com
17
0.001 Low
EPSS
Percentile
40.3%
Security Advisory Description
A specially crafted reply to DNS queries from RESOLV::lookup may consume excess system resources or possibly lead to a crash and failover. (CVE-2016-6876)
Impact
The BIG-IP system may consume excess system resources, or experience a Traffic Management Microkernel (TMM) core and fail over. This vulnerability can only be triggered if you use the RESOLV::lookup iRule command to resolve PTR records. Other configurations that use the** RESOLV::lookup** iRule command are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
openvas
openvas
F5 BIG-IP - RESOLV::lookup iRule command vulnerability CVE-2016-6876
2016-10-24 00:00:00
prion
prion
Design/Logic Flaw
2016-09-07 19:28:00
cvelist
cvelist
CVE-2016-6876
2016-09-07 19:00:00
nessus
nessus
F5 Networks BIG-IP : RESOLV::lookup iRule command vulnerability (K52638558)
2016-08-31 00:00:00
cve
cve
CVE-2016-6876
2016-09-07 19:28:17
nvd
nvd
CVE-2016-6876
2016-09-07 19:28:17