Forum Discussion

Nimbostratus

Feb 18, 2019

ASM Signature Update 02/08/2019 Contains Incorrect Command Execution Signatures

The 2/8/19 signature update available on F5 Downloads (shows a create date of 1/22/19 in the F5 UI) has some questionable updates for Command Execution signatures on parameters that cause a large amo...

Nimbostratus

Feb 27, 2019

Just wanted to note that you can backout your signatures by installing the previous update from before 2/8/19. You can get the signature file manually from . It will remove the signatures that had bad updates. You will also need to turn off auto-updates to make sure it doesn't get overwritten until F5 puts out a sig release to address.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM Signature Update 02/08/2019 Contains Incorrect Command Execution Signatures

Recent Discussions

value analytic latency

BIG-IP VE - qemu on an Apple Silicon Macbook

Minimum connection to guarantee the use of corporate VPNs.

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

Local Traffic Policy rule or irule to bypass the BIG-IP ASM

Related Content

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Wildcard Parameter signature attack

BoT Defense Profile, Signature Enforcement

Customized Bot Signature not working

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS