[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99602

 
 

909

 
 

80167

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2016-5700

Date: (C)2016-10-05   (M)2017-12-07 


Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF4, and 12.1.0 before HF2, when configured with the HTTP Explicit Proxy functionality or SOCKS profile, allow remote attackers to modify the system configuration, read system files, and possibly execute arbitrary code via unspecified vectors.

CVSS Score: 9.3Access Vector: NETWORK
Exploit Score: 8.6Access Complexity: MEDIUM
Impact Score: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE





Reference:
SECTRACK-1036928
BID-93325
https://support.f5.com/kb/en-us/solutions/public/k/35/sol35520031.html

CPE    49
cpe:/a:f5:big-ip_access_policy_manager:11.5.3
cpe:/a:f5:big-ip_access_policy_manager:11.5.2
cpe:/a:f5:big-ip_access_policy_manager:11.5.4
cpe:/a:f5:big-ip_application_acceleration_manager:12.0.0
...
CWE    1
CWE-284

© 2013 SecPod Technologies