For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Sumanta_88744's avatar
Sumanta_88744
Icon for Cirrus rankCirrus
Jul 20, 2016

F5 LTM hardening (11.6.0 HF 5.0.429)

Hi Experts   How to harden the below version to fix the issues after VAPT ?   Product BIG-IP 2000 LTM   Version 11.6.0   Build 5.0.429   Edition Hotfix HF5   1) Op...
application delivery
BIG-IP
security
Chris_Grant's avatar
Chris_Grant
Icon for Employee rankEmployee
Jul 28, 2016

You cannot harden the bigIP against CVE-2012-0814 because it is not vulnerable to this CVE as per SOL14446.

 

The management interface is vulnerable to slow loris as per SOL12636 on all versions and it can be prevented by following best practice and not allowing public access to your management interface. You can read more about the slow loris attack and protecting virtual servers by reading SOL10260.

 

The correct resolution for CVE-2008-5161 is to upgrade to v11, which is not vulnerable as per SOL14609.

 

As you have read these articles I am guessing there is something further you feel you need. What exactly do you feel these articles are missing?