ID
VAR-200504-0247
TITLE
F5 BIG-IP User Interface Login Credential Caching Vulnerability
Trust: 0.3
sources:
BID: 13240
DESCRIPTION
A vulnerability is present in the F5 BIG-IP user interface. This issue exists because the Configuration utility does not check the credentials for additional sessions from a user once they are logged in. Versions 9.0.2 through to 9.0.4 of BIG-IP are reported vulnerable to this issue.
Trust: 0.3
sources:
BID: 13240
AFFECTED PRODUCTS
| vendor: | f5 | model: | big-ip | scope: | eq | version: | 9.0.4 | Trust: 0.3 |
| vendor: | f5 | model: | big-ip | scope: | eq | version: | 9.0.3 | Trust: 0.3 |
| vendor: | f5 | model: | big-ip | scope: | eq | version: | 9.0.2 | Trust: 0.3 |
| vendor: | f5 | model: | big-ip | scope: | ne | version: | 9.0.5 | Trust: 0.3 |
| vendor: | f5 | model: | big-ip | scope: | ne | version: | 9.0.1 | Trust: 0.3 |
| vendor: | f5 | model: | big-ip | scope: | ne | version: | 9.0 | Trust: 0.3 |
sources:
BID: 13240
THREAT TYPE
network
Trust: 0.3
sources:
BID: 13240
TYPE
Design Error
Trust: 0.3
sources:
BID: 13240
EXTERNAL IDS
| db: | BID | id: | 13240 | Trust: 0.3 |
sources:
BID: 13240
REFERENCES
| url: | http://www.f5.com/f5products/bigip/ | Trust: 0.3 |
sources:
BID: 13240
CREDITS
The vendor disclosed this vulnerability.
Trust: 0.3
sources:
BID: 13240
SOURCES
| db: | BID | id: | 13240 |
LAST UPDATE DATE
2022-05-17T02:08:43.005000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 13240 | date: | 2005-04-18T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 13240 | date: | 2005-04-18T00:00:00 |