-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
                         AUSCERT Security Bulletin

                               ASB-2012.0050
         Mitigation for PHP vulnerabilities affecting F5 Products
                               5 April 2012

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:              BIG-IP
                      FirePass
Operating System:     Network Appliance
Impact/Access:        Unauthorised Access            -- Existing Account
                      Provide Misleading Information -- Existing Account
                      Denial of Service              -- Existing Account
                      Cross-site Scripting           -- Existing Account
Resolution:           Mitigation
CVE Names:            CVE-2011-3268 CVE-2011-3267 CVE-2011-3182
                      CVE-2011-1470 CVE-2010-4697 CVE-2010-3870
                      CVE-2010-3710 CVE-2007-3799 CVE-2006-7243
Member content until: Saturday, May  5 2012
Reference:            ESB-2010.0998

OVERVIEW

        F5 has provided mitigation information for a number of PHP
        vulnerabilities.


IMPACT

        F5 has advised the PHP vulnerabilities ".. may be locally exploitable on
        some F5 products". F5 refers to the Mitre CVE (Common Vulnerabilities
        and Exposures) website for specific vulnerability details. [1]


MITIGATION

        The vendor has provided the following mitigation information:
        
        "To mitigate this vulnerability, expose the administrative interface
        only on trusted networks and limit login access to trusted users." [1]


REFERENCES

        [1] SOL13519: Multiple PHP vulnerabilities
            http://support.f5.com/kb/en-us/solutions/public/13000/500/sol13519.html

AusCERT has made every effort to ensure that the information contained
in this document is accurate.  However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours 
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=jW4l
-----END PGP SIGNATURE-----