Forum Discussion

Cirrocumulus

Sep 04, 2015

BIND vulnerability CVE-2015-5722

Hi Due to BIND vulnerability CVE-2015-5722 I'm using GTM version 10.2.4 and it has note (1) and (3) If I don't enable dnssec validation ...but config a pool to uses the Return to DNS l...

Historic F5 Account

Sep 04, 2015

Yes your box is potentially vulnerable when all pools associated with the wide-IP are unavailable. This is clarified in https://support.f5.com/kb/en-us/solutions/public/17000/100/sol17181.html

"These versions are vulnerable if configured with a pool that uses the Return to DNS load balancing method or when the pool's Alternate and Fallback load balancing methods are set to None, and all pools associated with the wide-IP are unavailable."

Recent Discussions

SCP / WINSCP - problem copy - not allowed SCP error
Jul 05, 2024 Sonador_28_1978
mejores practicas para actualizacion de firmas de ataques?
Solved
Jul 05, 2024 sarriola
Packet based load balancing instead of connection based (default)
Jul 05, 2024 f5guyskenzi
Manipulating Hostname and SNI
Jul 05, 2024 Fernas
Can session persistence time impact load balancing
Jul 05, 2024 buzzkiller

Forum Discussion

BIND vulnerability CVE-2015-5722

Recent Discussions

SCP / WINSCP - problem copy - not allowed SCP error

mejores practicas para actualizacion de firmas de ataques?

Packet based load balancing instead of connection based (default)

Manipulating Hostname and SNI

Can session persistence time impact load balancing

Related Content

Coordinated Vulnerability Disclosure: A Balanced Approach

Enhancing Software Security with Rust: A Solution to Common Vulnerabilities

LTM Monitoring IIS and Webserver Binding

OWASP Automated Threats - OAT-014 Vulnerability Scanning

Reviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual Server