Recommended action
To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table.
To mitigate this vulnerability, you can modify the logout web page to null the specific code identified at issue. To do so, perform the following procedure:
Impact of action: Performing the following procedure should not have a negative impact on your system.
Log in to the BIG-IP Configuration utility.
Click Access Policy.
Click Customization.
ClickAdvanced****Customization.
From the Edit Mode menu, selectAdvanced.
Select the resource type folder for Access Profiles.
Select the subfolder that shares the name of the affected access policy.
Select the Logout folder.
Select the logout.inc file.
Locate the following line, which is typically line 40 of an unmodified logout.inc file:
var display_session = get_cookie(“LastMRH_Session”);
The entire JavaScript code appears as follows:
var display_session = get_cookie(“LastMRH_Session”);
if(null != display_session) {
document.getElementById(“sessionDIV”).innerHTML = '<BR>The session reference number: ’ + display_session + ‘<BR><BR>’;
document.getElementById(“sessionDIV”).style.visibility = “visible”;
}
For example:
// var display_session = get_cookie(“LastMRH_Session”);
// if(null != display_session) {
// document.getElementById(“sessionDIV”).innerHTML = '<BR>The session reference number: ’ + display_session + ‘<BR><BR>’;
// document.getElementById(“sessionDIV”).style.visibility = “visible”;
// }
Acknowledgments
F5 would like to acknowledge Tony Dimichele of BNP Paribas US for bringing this issue to our attention, and for following the highest standards of responsible disclosure.
Supplemental Information
CPE | Name | Operator | Version |
---|---|---|---|
big-ip apm | le | 11.3.0 |
support.f5.com/kb/en-us/solutions/public/0000/100/sol167.html
support.f5.com/kb/en-us/solutions/public/13000/100/sol13123.html
support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html
support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html
support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html