Forum Discussion

Nimbostratus

Jul 27, 2016

Correspondance of CVE-2016-4438/s2-027

Guys, Do you know that ASM signatures supports CVE-2016-4438/S2-037? I didnot confirm that in release notes and in DB(mysql) of ASM. Thanks

MVP

Jul 27, 2016

i assume you are wondering if the ASM protects against this vulnerability?

as you already saw yourself there is nothing in the latest attack signature update about this, so i would say no, not at the moment.

i can't find any specific information about it either to be able to determine if creating custom signature is possible. it at all possible you should restrict access to this component from untrusted networks.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Correspondance of CVE-2016-4438/s2-027

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Python script to print report of VIPs, corresponding profiles, SSL profile cipher strings and full cipher list

ASM policy with corresponding VIP details

icontrol api corresponding to high availability

folder corresponding to default common partition

How VMware Virtual Adapters Correspond to F5 VE VLAN Interfaces

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS