9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.972 High
EPSS
Percentile
99.8%
Information about this advisory is available at the following locations:
<http://www.kb.cert.org/vuls/id/456745>
<http://www.microsoft.com/technet/security/advisory/973882.mspx>
<http://www.microsoft.com/technet/security/bulletin/ms09-034.mspx>
<http://www.microsoft.com/technet/security/bulletin/ms09-035.mspx>
<http://msdn.microsoft.com/en-us/visualc/ee309358.aspx>
F5 Product Development tracked this issue as ID 296507 (formerly CR125945) for FirePass, and it was fixed in FirePass 6.1.0. For information about upgrading, refer to the FirePass release notes.
Obtaining and installing patches
This issue was fixed in cumulative hotfix HF-603-5 issued for FirePass 6.0.3. You may download this hotfix or later versions of the cumulative hotfix from the F5 Downloads site.
Additionally, this issue was fixed in a hotfix issued for FirePass 5.5.2 and 6.0.2. Customers affected by this issue should contact F5 Technical Support to request the hotfix. When contacting F5 Technical Support, be sure to include the CR number and the article number in your correspondence.