Lucene search
F5F5:K95444512HistoryMar 22, 2017 - 12:00 a.m.
K95444512 : TMM SSO plugin vulnerability CVE-2016-7467
2017-03-2200:00:00
my.f5.com
18
0.002 Low
EPSS
Percentile
52.5%
Security Advisory Description
The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4 HF2, when configured as a SAML Identity Provider with a Service Provider (SP) connector, might allow traffic to be disrupted or failover initiated when a malformed, signed SAML authentication request from an authenticated user is sent via the SP connector. (CVE-2016-7467)
This vulnerability affects BIG-IP APM systems that have the following configuration:
- The BIG-IP APM system is configured as a Security Assertion Markup Language (SAML) Identity Provider (IdP) with a Service Provider (SP) connector.
- The BIG-IP APM system is configured to require a signed authentication request as a SAML IdP.
- The attached SP connector has a signing certificate configured.
Impact
When the system is exploited, traffic is temporarily disrupted while services restart.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
nessus
nessus
F5 Networks BIG-IP : TMM SSO plugin vulnerability (K95444512)
2017-03-23 00:00:00
cvelist
cvelist
CVE-2016-7467
2017-04-11 14:00:00
prion
prion
Authentication flaw
2017-04-11 14:59:00
nvd
nvd
CVE-2016-7467
2017-04-11 14:59:00
cve
cve
CVE-2016-7467
2017-04-11 14:59:00
openvas
openvas
F5 BIG-IP - TMM SSO plugin vulnerability CVE-2016-7467
2017-03-27 00:00:00