For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

CVE-2014-6271 Shellshocked

It's a good thing we are naming all of our vulnerabilities now; it's easier to keep track of them. I haven't seen an official designation for CVE-2014-6271, but Shellshock seems appropriate. This ...
Published Sep 25, 2014
Version 1.0
security
shellshock
TMOS
daniel_spillers's avatar
daniel_spillers
Icon for Nimbostratus rankNimbostratus
Sep 25, 2014
"At this point, we do not believe the traffic passing interfaces of a BIG-IP can be exploited." Do you mean that traffic passing interfaces can't be used to attack the BIG-IP appliance itself? Or do you mean the traffic passing interfaces won't pass attacks to back-end servers?