Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: F5 BIG-IP ASM and PSM Remote Buffer Overflow SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
F5 BIG-IP ASM and PSM Remote Buffer Overflow

The BIG-IP Application Security Manager (ASM) and Protocol Security Manager (PSM) "bd" daemon is vulnerable to a remote buffer overflow which could be exploited by remote attackers to cause a denial of service and may cause the system to crash and dump core.

The following products affected by this issue are:

F5 BIG-IP ASM versions 9.4.4 through 9.4.7
F5 BIG-IP ASM versions 10.0.0 through 10.0.1
F5 BIG-IP PSM versions 9.4.5 through 9.4.7
F5 BIG-IP PSM versions 10.0.0 through 10.0.1

Registered users can access the advisory here.


Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot org


501 Posts
ISC Handler
Dec 24th 2009

Sign Up for Free or Log In to start participating in the conversation!