SOL13463 - FirePass SQL injection vulnerability - CVE-2012-1777

Recommended action

To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table.

F5 strongly recommends installing FirePass HF-377712-1 to address this vulnerability.

Supplemental Information

• CERT advisory regarding CVE-2012-1777
• SOL167: Downloading software and firmware from F5
• SOL10322: FirePass hotfix matrix
• SOL3430: Installing FirePass hotfixes
• SOL9970: Subscribing to email notifications regarding F5 products
• SOL9957: Creating a custom RSS feed to view new and updated documents.
• SOL4602: Overview of the F5 security vulnerability response policy
• SOL4918: Overview of the F5 critical issue hotfix policy

Acknowledgments

F5 would like to acknowledge SEC Consult for their efforts in identifying this issue.