CVE-2012-1493
First published: Mon Jul 09 2012(Updated: )
F5 BIG-IP appliances 9.x before 9.4.8-HF5, 10.x before 10.2.4, 11.0.x before 11.0.0-HF2, and 11.1.x before 11.1.0-HF3, and Enterprise Manager before 2.1.0-HF2, 2.2.x before 2.2.0-HF1, and 2.3.x before 2.3.0-HF3, use a single SSH private key across different customers' installations and do not properly restrict access to this key, which makes it easier for remote attackers to perform SSH logins via the PubkeyAuthentication option.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| F5 BIG-IP Application Security Manager | =9.2.0 | |
| F5 BIG-IP Application Security Manager | =9.2.0-hf4 | |
| F5 BIG-IP Application Security Manager | =9.4.4 | |
| F5 BIG-IP Application Security Manager | =9.4.5 | |
| F5 BIG-IP Application Security Manager | =9.4.6 | |
| F5 BIG-IP Application Security Manager | =9.4.7 | |
| F5 BIG-IP Application Security Manager | =9.4.8 | |
| F5 BIG-IP Application Security Manager | =10.0.0 | |
| F5 BIG-IP Application Security Manager | =10.0.1 | |
| F5 BIG-IP Application Security Manager | =10.2.3-hf1 | |
| F5 BIG-IP Application Security Manager | =11.0.0 | |
| F5 BIG-IP Application Security Manager | =11.0.0-hf1 | |
| F5 BIG-IP Application Security Manager | =11.1.0 | |
| F5 BIG-IP Application Security Manager | =11.1.0-hf2 | |
| F5 Big-ip Global Traffic Manager | ||
| F5 Big-ip Global Traffic Manager | =9.2.2 | |
| F5 Big-ip Global Traffic Manager | =9.4.8-hf4 | |
| F5 Big-ip Global Traffic Manager | =10.0.0 | |
| F5 Big-ip Global Traffic Manager | =10.2.3-hf1 | |
| F5 Big-ip Global Traffic Manager | =11.0.0 | |
| F5 Big-ip Global Traffic Manager | =11.0.0-hf1 | |
| F5 Big-ip Global Traffic Manager | =11.1.0 | |
| F5 Big-ip Global Traffic Manager | =11.1.0-hf2 | |
| F5 Big-ip Local Traffic Manager | ||
| F5 Big-ip Local Traffic Manager | =9.0.0 | |
| F5 Big-ip Local Traffic Manager | =9.4.8-hf4 | |
| F5 Big-ip Local Traffic Manager | =10.0.0 | |
| F5 Big-ip Local Traffic Manager | =10.2.3-hf1 | |
| F5 Big-ip Local Traffic Manager | =11.0.0 | |
| F5 Big-ip Local Traffic Manager | =11.0.0-hf1 | |
| F5 Big-ip Local Traffic Manager | =11.1.0 | |
| F5 Big-ip Local Traffic Manager | =11.1.0-hf2 | |
| F5 Tmos | ||
| F5 Tmos | =2.0 | |
| F5 Tmos | =4.0 | |
| F5 Tmos | =4.2 | |
| F5 Tmos | =4.3 | |
| F5 Tmos | =4.4 | |
| F5 Tmos | =4.5 | |
| F5 Tmos | =4.5.6 | |
| F5 Tmos | =4.5.9 | |
| F5 Tmos | =4.5.10 | |
| F5 Tmos | =4.5.11 | |
| F5 Tmos | =4.5.12 | |
| F5 Tmos | =4.6 | |
| F5 Tmos | =4.6.2 | |
| F5 Tmos | =9.0 | |
| F5 Tmos | =9.0.1 | |
| F5 Tmos | =9.0.2 | |
| F5 Tmos | =9.0.3 | |
| F5 Tmos | =9.0.4 | |
| F5 Tmos | =9.0.5 | |
| F5 Tmos | =9.1 | |
| F5 Tmos | =9.1.1 | |
| F5 Tmos | =9.1.2 | |
| F5 Tmos | =9.1.3 | |
| F5 Tmos | =9.2 | |
| F5 Tmos | =9.2.2 | |
| F5 Tmos | =9.2.3 | |
| F5 Tmos | =9.2.4 | |
| F5 Tmos | =9.2.5 | |
| F5 Tmos | =9.3 | |
| F5 Tmos | =9.3.1 | |
| F5 Tmos | =9.4 | |
| F5 Tmos | =9.4.1 | |
| F5 Tmos | =9.4.2 | |
| F5 Tmos | =9.4.3 | |
| F5 Tmos | =9.4.4 | |
| F5 Tmos | =9.4.5 | |
| F5 Tmos | =9.4.6 | |
| F5 Tmos | =9.4.7 | |
| F5 Tmos | =9.4.8 | |
| F5 Tmos | =9.6.0 | |
| F5 Tmos | =9.6.1 | |
| F5 Tmos | =10.0.0 | |
| F5 Tmos | =10.0.1 | |
| F5 Tmos | =10.1.0 | |
| F5 Tmos | =10.2.0 | |
| F5 Big-ip 1000 | ||
| F5 Big-ip 11000 | ||
| F5 Big-ip 11050 | ||
| F5 Big-ip 1500 | ||
| F5 Big-ip 1600 | ||
| F5 Big-ip 2400 | ||
| F5 Big-ip 3400 | ||
| F5 Big-ip 3410 | ||
| F5 Big-ip 3600 | ||
| F5 Big-ip 3900 | ||
| F5 Big-ip 4100 | ||
| F5 Big-ip 5100 | ||
| F5 Big-ip 5110 | ||
| F5 Big-ip 6400 | ||
| F5 Big-ip 6800 | ||
| F5 Big-ip 6900 | ||
| F5 Big-ip 8400 | ||
| F5 Big-ip 8800 | ||
| F5 Big-ip 8900 | ||
| F5 Big-ip 8950 | ||
| F5 Enterprise Manager | ||
| F5 Enterprise Manager | =1.0 | |
| F5 Enterprise Manager | =2.0 | |
| F5 Enterprise Manager | =2.1.0 | |
| F5 Enterprise Manager | =2.1.0-hf1 | |
| F5 Enterprise Manager | =2.2.0 | |
| F5 Enterprise Manager | =2.3.0 | |
| F5 Enterprise Manager | =2.3.0-hf2 | |
| F5 Enterprise Manager | ||
| F5 Enterprise Manager | =1.0 | |
| F5 Enterprise Manager | =2.0 | |
| F5 Enterprise Manager | =2.1.0 | |
| F5 Enterprise Manager | =2.1.0-hf1 | |
| F5 Enterprise Manager | =2.2.0 | |
| F5 Enterprise Manager | =2.3.0 | |
| F5 Enterprise Manager | =2.3.0-hf2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://support.f5.com/kb/en-us/solutions/public/13000/600/sol13600.html
- http://www.theregister.co.uk/2012/06/13/f5_kit_metasploit_exploit/
- https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb
- https://www.trustmatta.com/advisories/MATTA-2012-002.txt
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/f5
- canonical/f5 big-ip application security manager
- version/f5 big-ip application security manager/9.2.0
- version/f5 big-ip application security manager/9.2.0-hf4
- version/f5 big-ip application security manager/9.4.4
- version/f5 big-ip application security manager/9.4.5
- version/f5 big-ip application security manager/9.4.6
- version/f5 big-ip application security manager/9.4.7
- version/f5 big-ip application security manager/9.4.8
- version/f5 big-ip application security manager/10.0.0
- version/f5 big-ip application security manager/10.0.1
- version/f5 big-ip application security manager/10.2.3-hf1
- version/f5 big-ip application security manager/11.0.0
- version/f5 big-ip application security manager/11.0.0-hf1
- version/f5 big-ip application security manager/11.1.0
- version/f5 big-ip application security manager/11.1.0-hf2
- canonical/f5 big-ip global traffic manager
- version/f5 big-ip global traffic manager/9.2.2
- version/f5 big-ip global traffic manager/9.4.8-hf4
- version/f5 big-ip global traffic manager/10.0.0
- version/f5 big-ip global traffic manager/10.2.3-hf1
- version/f5 big-ip global traffic manager/11.0.0
- version/f5 big-ip global traffic manager/11.0.0-hf1
- version/f5 big-ip global traffic manager/11.1.0
- version/f5 big-ip global traffic manager/11.1.0-hf2
- canonical/f5 big-ip local traffic manager
- version/f5 big-ip local traffic manager/9.0.0
- version/f5 big-ip local traffic manager/9.4.8-hf4
- version/f5 big-ip local traffic manager/10.0.0
- version/f5 big-ip local traffic manager/10.2.3-hf1
- version/f5 big-ip local traffic manager/11.0.0
- version/f5 big-ip local traffic manager/11.0.0-hf1
- version/f5 big-ip local traffic manager/11.1.0
- version/f5 big-ip local traffic manager/11.1.0-hf2
- canonical/f5 tmos
- version/f5 tmos/2.0
- version/f5 tmos/4.0
- version/f5 tmos/4.2
- version/f5 tmos/4.3
- version/f5 tmos/4.4
- version/f5 tmos/4.5
- version/f5 tmos/4.5.6
- version/f5 tmos/4.5.9
- version/f5 tmos/4.5.10
- version/f5 tmos/4.5.11
- version/f5 tmos/4.5.12
- version/f5 tmos/4.6
- version/f5 tmos/4.6.2
- version/f5 tmos/9.0
- version/f5 tmos/9.0.1
- version/f5 tmos/9.0.2
- version/f5 tmos/9.0.3
- version/f5 tmos/9.0.4
- version/f5 tmos/9.0.5
- version/f5 tmos/9.1
- version/f5 tmos/9.1.1
- version/f5 tmos/9.1.2
- version/f5 tmos/9.1.3
- version/f5 tmos/9.2
- version/f5 tmos/9.2.2
- version/f5 tmos/9.2.3
- version/f5 tmos/9.2.4
- version/f5 tmos/9.2.5
- version/f5 tmos/9.3
- version/f5 tmos/9.3.1
- version/f5 tmos/9.4
- version/f5 tmos/9.4.1
- version/f5 tmos/9.4.2
- version/f5 tmos/9.4.3
- version/f5 tmos/9.4.4
- version/f5 tmos/9.4.5
- version/f5 tmos/9.4.6
- version/f5 tmos/9.4.7
- version/f5 tmos/9.4.8
- version/f5 tmos/9.6.0
- version/f5 tmos/9.6.1
- version/f5 tmos/10.0.0
- version/f5 tmos/10.0.1
- version/f5 tmos/10.1.0
- version/f5 tmos/10.2.0
- canonical/f5 big-ip 1000
- canonical/f5 big-ip 11000
- canonical/f5 big-ip 11050
- canonical/f5 big-ip 1500
- canonical/f5 big-ip 1600
- canonical/f5 big-ip 2400
- canonical/f5 big-ip 3400
- canonical/f5 big-ip 3410
- canonical/f5 big-ip 3600
- canonical/f5 big-ip 3900
- canonical/f5 big-ip 4100
- canonical/f5 big-ip 5100
- canonical/f5 big-ip 5110
- canonical/f5 big-ip 6400
- canonical/f5 big-ip 6800
- canonical/f5 big-ip 6900
- canonical/f5 big-ip 8400
- canonical/f5 big-ip 8800
- canonical/f5 big-ip 8900
- canonical/f5 big-ip 8950
- canonical/f5 enterprise manager
- version/f5 enterprise manager/1.0
- version/f5 enterprise manager/2.0
- version/f5 enterprise manager/2.1.0
- version/f5 enterprise manager/2.1.0-hf1
- version/f5 enterprise manager/2.2.0
- version/f5 enterprise manager/2.3.0
- version/f5 enterprise manager/2.3.0-hf2