F5 BIG-IP ASM and PSM Remote Buffer Overflow

The BIG-IP Application Security Manager (ASM) and Protocol Security Manager (PSM) "bd" daemon is vulnerable to a remote buffer overflow which could be exploited by remote attackers to cause a denial of service and may cause the system to crash and dump core.

The following products affected by this issue are:

F5 BIG-IP ASM versions 9.4.4 through 9.4.7
F5 BIG-IP ASM versions 10.0.0 through 10.0.1
F5 BIG-IP PSM versions 9.4.5 through 9.4.7
F5 BIG-IP PSM versions 10.0.0 through 10.0.1

Registered users can access the advisory here.


Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot org


528 Posts
ISC Handler
Dec 24th 2009

Sign Up for Free or Log In to start participating in the conversation!