CVE-2016-9244
CVE-2016-9244
A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Tickets option enabled may leak up to 31 bytes of uninitialized memory. A remote attacker may exploit this vulnerability to obtain Secure Sockets Layer (SSL) session IDs from other sessions. It is possible that other data from uninitialized memory may be returned as well.
Produtos afetados
F5 Networks · F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, PEM, PSMPoCs públicas encontradas — 6
githubgithub.com/EgeBalci/Ticketbleed★ 30githubgithub.com/glestel/minion-ticket-bleed-plugin★ 0cve_referencepacketstormsecurity.com/files/141017/Ticketbleed-F5-TLS-Information-Disclosure.htmlnão verificadocve_referencewww.exploit-db.com/exploits/41298/não verificadoexploitdbwww.exploit-db.com/exploits/44446não verificadoexploitdbwww.exploit-db.com/exploits/41298não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://packetstormsecurity.com/files/141017/Ticketbleed-F5-TLS-Information-Disclosure.htmlhttps://blog.filippo.io/finding-ticketbleed/https://filippo.io/Ticketbleed/https://github.com/0x00string/oldays/blob/master/CVE-2016-9244.pyhttps://support.f5.com/csp/article/K05121675https://www.exploit-db.com/exploits/41298/http://www.securityfocus.com/bid/96143http://www.securitytracker.com/id/1037800