CVE-2013-6016

The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, APM, ASM, Edge Gateway, GTM, Link Controller, and WOM 10.0.0 through 10.2.2 and 11.0.0; Analytics 11.0.0; PSM 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.4.1; and WebAccelerator 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.3.0 might change a TCP connection to the ESTABLISHED state before receiving the ACK packet, which allows remote attackers to cause a denial of service (SIGFPE or assertion failure and TMM restart) via unspecified vectors.

🔗 References (8)

• cret@certhttp://secunia.com/advisories/55378
• cret@certhttp://support.f5.com/kb/en-us/solutions/public/13000/200/sol13233.html
• cret@certhttp://www.securitytracker.com/id/1029220
• cret@certhttps://exchange.xforce.ibmcloud.com/vulnerabilities/88166
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/55378
• af854a3a-2127-422b-91ae-364da2661108http://support.f5.com/kb/en-us/solutions/public/13000/200/sol13233.html
• af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1029220
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/88166