cnvd - cnvd-2017-06372

cnvd-2017-06372

Vulnerability from cnvd

Title: F5 BIG-IP TCP数据包拒绝服务漏洞

Description:

F5 BIG-IP是一个负载均衡器，采用各种分配算法把网络请求分散到一个服务器集群中的可用服务器上去，通过管理进入的Web数据流量和增加有效的网络带宽，从而使网络访问者获得尽可能最佳的联网体验的硬件设备。

F5 BIG-IP TCP数据包存在拒绝服务漏洞，远程用户可以利用该漏洞发送特制的数据包序列，导致目标流量管理微内核（TMM）中断。

Severity: 中

Patch Name: F5 BIG-IP TCP数据包拒绝服务漏洞的补丁

Patch Description:

F5 BIG-IP TCP数据包存在拒绝服务漏洞，远程用户可以利用该漏洞发送特制的数据包序列，导致目标流量管理微内核（TMM）中断。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可参考如下厂商提供的安全补丁以修复该漏洞： https://support.f5.com/csp/article/K82851041

Reference: http://securitytracker.com/id/1038409 https://nvd.nist.gov/vuln/detail/CVE-2017-6137

Impacted products

Name
['F5 BIG-IP AAM', 'F5 BIG-IP LTM', 'F5 BIG-IP AFM', 'F5 BIG-IP Analytics', 'F5 BIG-IP APM', 'F5 BIG-IP ASM', 'F5 BIG-IP Link Controller', 'F5 BIG-IP Edge Gateway', 'F5 BIG-IP WebAccelerator', 'F5 BIG-IP DNS', 'F5 BIG-IP PSM', 'F5 BIG-IP PEM', 'F5 BIG-IP WebSafe 11.6.1 HF1', 'F5 BIG-IP WebSafe 12.0.0 HF3', 'F5 BIG-IP WebSafe 12.0.0 HF4', 'F5 BIG-IP WebSafe >=12.1.0 ，<=12.1.2']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-6137",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6137"
    }
  },
  "description": "F5 BIG-IP\u662f\u4e00\u4e2a\u8d1f\u8f7d\u5747\u8861\u5668\uff0c\u91c7\u7528\u5404\u79cd\u5206\u914d\u7b97\u6cd5\u628a\u7f51\u7edc\u8bf7\u6c42\u5206\u6563\u5230\u4e00\u4e2a\u670d\u52a1\u5668\u96c6\u7fa4\u4e2d\u7684\u53ef\u7528\u670d\u52a1\u5668\u4e0a\u53bb\uff0c\u901a\u8fc7\u7ba1\u7406\u8fdb\u5165\u7684Web\u6570\u636e\u6d41\u91cf\u548c\u589e\u52a0\u6709\u6548\u7684\u7f51\u7edc\u5e26\u5bbd\uff0c\u4ece\u800c\u4f7f\u7f51\u7edc\u8bbf\u95ee\u8005\u83b7\u5f97\u5c3d\u53ef\u80fd\u6700\u4f73\u7684\u8054\u7f51\u4f53\u9a8c\u7684\u786c\u4ef6\u8bbe\u5907\u3002\r\n\r\nF5 BIG-IP TCP\u6570\u636e\u5305\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u7528\u6237\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u53d1\u9001\u7279\u5236\u7684\u6570\u636e\u5305\u5e8f\u5217\uff0c\u5bfc\u81f4\u76ee\u6807\u6d41\u91cf\u7ba1\u7406\u5fae\u5185\u6838\uff08TMM\uff09\u4e2d\u65ad\u3002",
  "discovererName": "unknown",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://support.f5.com/csp/article/K82851041",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-06372",
  "openTime": "2017-05-12",
  "patchDescription": "F5 BIG-IP\u662f\u4e00\u4e2a\u8d1f\u8f7d\u5747\u8861\u5668\uff0c\u91c7\u7528\u5404\u79cd\u5206\u914d\u7b97\u6cd5\u628a\u7f51\u7edc\u8bf7\u6c42\u5206\u6563\u5230\u4e00\u4e2a\u670d\u52a1\u5668\u96c6\u7fa4\u4e2d\u7684\u53ef\u7528\u670d\u52a1\u5668\u4e0a\u53bb\uff0c\u901a\u8fc7\u7ba1\u7406\u8fdb\u5165\u7684Web\u6570\u636e\u6d41\u91cf\u548c\u589e\u52a0\u6709\u6548\u7684\u7f51\u7edc\u5e26\u5bbd\uff0c\u4ece\u800c\u4f7f\u7f51\u7edc\u8bbf\u95ee\u8005\u83b7\u5f97\u5c3d\u53ef\u80fd\u6700\u4f73\u7684\u8054\u7f51\u4f53\u9a8c\u7684\u786c\u4ef6\u8bbe\u5907\u3002\r\n\r\nF5 BIG-IP TCP\u6570\u636e\u5305\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u7528\u6237\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u53d1\u9001\u7279\u5236\u7684\u6570\u636e\u5305\u5e8f\u5217\uff0c\u5bfc\u81f4\u76ee\u6807\u6d41\u91cf\u7ba1\u7406\u5fae\u5185\u6838\uff08TMM\uff09\u4e2d\u65ad\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "F5 BIG-IP TCP\u6570\u636e\u5305\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "F5 BIG-IP AAM",
      "F5 BIG-IP LTM",
      "F5 BIG-IP AFM",
      "F5 BIG-IP Analytics",
      "F5 BIG-IP APM",
      "F5 BIG-IP ASM",
      "F5 BIG-IP Link Controller",
      "F5 BIG-IP Edge Gateway",
      "F5 BIG-IP WebAccelerator",
      "F5 BIG-IP DNS",
      "F5 BIG-IP PSM",
      "F5 BIG-IP PEM",
      "F5 BIG-IP WebSafe 11.6.1 HF1",
      "F5 BIG-IP WebSafe 12.0.0 HF3",
      "F5 BIG-IP WebSafe 12.0.0 HF4",
      "F5 BIG-IP WebSafe \u003e=12.1.0 \uff0c\u003c=12.1.2"
    ]
  },
  "referenceLink": "http://securitytracker.com/id/1038409\r\nhttps://nvd.nist.gov/vuln/detail/CVE-2017-6137",
  "serverity": "\u4e2d",
  "submitTime": "2017-05-11",
  "title": "F5 BIG-IP TCP\u6570\u636e\u5305\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

CVE-2017-6137 (GCVE-0-2017-6137)

Vulnerability from cvelistv5

Published

2017-05-09 15:00

Modified

2024-08-05 15:18

Severity ?

CWE

Denial of Service

Summary

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, and WebSafe 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 through 12.1.2, undisclosed traffic patterns received while software SYN cookie protection is engaged may cause a disruption of service to the Traffic Management Microkernel (TMM) on specific platforms and configurations.

References

▼	URL	Tags
	https://support.f5.com/csp/article/K82851041	x_refsource_CONFIRM
	http://www.securitytracker.com/id/1038409	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	F5 Networks, Inc.	BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, WebSafe	Version: 12.1.0 - 12.1.2 Version: 12.0.0 HF3 Version: 12.0.0 HF4 Version: 11.6.1 HF1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T15:18:49.793Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K82851041"
          },
          {
            "name": "1038409",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1038409"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, WebSafe",
          "vendor": "F5 Networks, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "12.1.0 - 12.1.2"
            },
            {
              "status": "affected",
              "version": "12.0.0 HF3"
            },
            {
              "status": "affected",
              "version": "12.0.0 HF4"
            },
            {
              "status": "affected",
              "version": "11.6.1 HF1"
            }
          ]
        }
      ],
      "datePublic": "2017-05-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, and WebSafe 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 through 12.1.2, undisclosed traffic patterns received while software SYN cookie protection is engaged may cause a disruption of service to the Traffic Management Microkernel (TMM) on specific platforms and configurations."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Denial of Service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-07T09:57:01",
        "orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
        "shortName": "f5"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/csp/article/K82851041"
        },
        {
          "name": "1038409",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1038409"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "f5sirt@f5.com",
          "ID": "CVE-2017-6137",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, WebSafe",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "12.1.0 - 12.1.2"
                          },
                          {
                            "version_value": "12.0.0 HF3"
                          },
                          {
                            "version_value": "12.0.0 HF4"
                          },
                          {
                            "version_value": "11.6.1 HF1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "F5 Networks, Inc."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, and WebSafe 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 through 12.1.2, undisclosed traffic patterns received while software SYN cookie protection is engaged may cause a disruption of service to the Traffic Management Microkernel (TMM) on specific platforms and configurations."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Denial of Service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.f5.com/csp/article/K82851041",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/csp/article/K82851041"
            },
            {
              "name": "1038409",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1038409"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
    "assignerShortName": "f5",
    "cveId": "CVE-2017-6137",
    "datePublished": "2017-05-09T15:00:00",
    "dateReserved": "2017-02-21T00:00:00",
    "dateUpdated": "2024-08-05T15:18:49.793Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted