F5 Networks BIG-IP : BIG-IP TMM vulnerability (K62712037)
High Nessus Plugin ID 118687
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionUnder certain conditions for BIG-IP systems using FastL4 profiles, when the Reassemble IP Fragments option is disabled (default), some specific large fragmented packets may restart the Traffic Management Microkernel (TMM). (CVE-2017-6150)
An attacker may be able to perform a denial-of-service (DoS) attack by causing the Traffic Management Microkernel (TMM) to restart.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K62712037.