Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1493

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2012-1493
Last Modified 10 Jul 2012 12:00:00
Published 09 Jul 2012 06:55:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1493

Summary

F5 BIG-IP appliances 9.x before 9.4.8-HF5, 10.x before 10.2.4, 11.0.x before 11.0.0-HF2, and 11.1.x before 11.1.0-HF3, and Enterprise Manager before 2.1.0-HF2, 2.2.x before 2.2.0-HF1, and 2.3.x before 2.3.0-HF3, use a single SSH private key across different customers' installations and do not properly restrict access to this key, which makes it easier for remote attackers to perform SSH logins via the PubkeyAuthentication option.

Vulnerable Systems

Operating System

  • F5 Tmos

  • F5 Tmos 10.0.0

  • F5 Tmos 10.0.1

  • F5 Tmos 10.1.0

  • F5 Tmos 10.2.0

  • F5 Tmos 2.0

  • F5 Tmos 4.0

  • F5 Tmos 4.2

  • F5 Tmos 4.3

  • F5 Tmos 4.4

  • F5 Tmos 4.5

  • F5 Tmos 4.5.10

  • F5 Tmos 4.5.11

  • F5 Tmos 4.5.12

  • F5 Tmos 4.5.6

  • F5 Tmos 4.5.9

  • F5 Tmos 4.6

  • F5 Tmos 4.6.2

  • F5 Tmos 9.0

  • F5 Tmos 9.0.1

  • F5 Tmos 9.0.2

  • F5 Tmos 9.0.3

  • F5 Tmos 9.0.4

  • F5 Tmos 9.0.5

  • F5 Tmos 9.1

  • F5 Tmos 9.1.1

  • F5 Tmos 9.1.2

  • F5 Tmos 9.1.3

  • F5 Tmos 9.2

  • F5 Tmos 9.2.2

  • F5 Tmos 9.2.3

  • F5 Tmos 9.2.4

  • F5 Tmos 9.2.5

  • F5 Tmos 9.3

  • F5 Tmos 9.3.1

  • F5 Tmos 9.4

  • F5 Tmos 9.4.1

  • F5 Tmos 9.4.2

  • F5 Tmos 9.4.3

  • F5 Tmos 9.4.4

  • F5 Tmos 9.4.5

  • F5 Tmos 9.4.6

  • F5 Tmos 9.4.7

  • F5 Tmos 9.4.8

  • F5 Tmos 9.6.0

  • F5 Tmos 9.6.1

Application

  • F5 Big-ip Application Security Manager 10.0.0

  • F5 Big-ip Application Security Manager 10.0.1

  • F5 Big-ip Application Security Manager 10.2.3

  • F5 Big-ip Application Security Manager 11.0.0

  • F5 Big-ip Application Security Manager 11.1.0

  • F5 Big-ip Application Security Manager 9.2.0

  • F5 Big-ip Application Security Manager 9.4.4

  • F5 Big-ip Application Security Manager 9.4.5

  • F5 Big-ip Application Security Manager 9.4.6

  • F5 Big-ip Application Security Manager 9.4.7

  • F5 Big-ip Application Security Manager 9.4.8

  • F5 Big-ip Global Traffic Manager

  • F5 Big-ip Global Traffic Manager 10.0.0

  • F5 Big-ip Global Traffic Manager 10.2.3

  • F5 Big-ip Global Traffic Manager 11.0.0

  • F5 Big-ip Global Traffic Manager 11.1.0

  • F5 Big-ip Global Traffic Manager 9.2.2

  • F5 Big-ip Global Traffic Manager 9.4.8

  • F5 Big-ip Local Traffic Manager

  • F5 Big-ip Local Traffic Manager 10.0.0

  • F5 Big-ip Local Traffic Manager 10.2.3

  • F5 Big-ip Local Traffic Manager 11.0.0

  • F5 Big-ip Local Traffic Manager 11.1.0

  • F5 Big-ip Local Traffic Manager 9.0.0

  • F5 Big-ip Local Traffic Manager 9.4.8

  • F5 Enterprise Manager

  • F5 Enterprise Manager 1.0

  • F5 Enterprise Manager 2.0

  • F5 Enterprise Manager 2.1.0

  • F5 Enterprise Manager 2.2.0

  • F5 Enterprise Manager 2.3.0


References

MISC - https://www.trustmatta.com/advisories/MATTA-2012-002.txt

MISC - https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb

MISC - http://www.theregister.co.uk/2012/06/13/f5_kit_metasploit_exploit/

CONFIRM - http://support.f5.com/kb/en-us/solutions/public/13000/600/sol13600.html


Last Updated: 27 May 2016 10:54:50