CVE-2012-6638 mitigation in another way?

Question

it seems the only way to mitigate CVE-2012-6638* is to upgrade to 11.5.x, something which is not always possible, certainly in short time.&nbsp;
has anyone implemented any other methods or contacted F5 about fixes in lower versions?&nbsp;
*) http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15304.html&nbsp;

kevin_davies_40 · Answer

There was a comment on the web that Red Hat 5 and 6 are not affected. AFAIK the base OS for BIGIP image is RHEL 5 but only internal F5 people would be able to tell you for sure.&nbsp;

what_lies_bene1 · Answer

It's actually CentOS now.&nbsp;
No idea around mitigations I'm afraid but remember this only relates to your management interface which I'd hope is on a secure network anyway right?&nbsp;

boneyard · Answer

thank you what lies beneath, i must have read over that part, makes things a lot less serious.&nbsp;

Forum Discussion

CVE-2012-6638 mitigation in another way?

3 Replies

Recent Discussions

Pricing when used with aws waf

F5 Rseries R2600 Tenant sizing

iRule help masking IBM host URL/URI

Need advise to setup a policy on F5

Advise on setting up IRULE

Related Content

DevCentral 2024 - Share Another Day

CitrixBleed Mitigation CVE-2023-4966

F5 Distributed Cloud L3-L7 DDoS Mitigation

Mitigating OWASP API Security risks using BIG-IP

Mitigating OWASP API Security Top 10 risks using F5 NGINX App Protect