CVE-2012-1493

F5 BIG-IP appliances 9.x before 9.4.8-HF5, 10.x before 10.2.4, 11.0.x before 11.0.0-HF2, and 11.1.x before 11.1.0-HF3, and Enterprise Manager before 2.1.0-HF2, 2.2.x before 2.2.0-HF1, and 2.3.x before 2.3.0-HF3, use a single SSH private key across different customers' installations and do not properly restrict access to this key, which makes it easier for remote attackers to perform SSH logins via the PubkeyAuthentication option.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:N/A:N

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://support.f5.com/kb/en-us/solutions/public/13000/600/sol13600.html	Vendor Advisory
http://www.theregister.co.uk/2012/06/13/f5_kit_metasploit_exploit/
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb	Exploit Patch
https://www.trustmatta.com/advisories/MATTA-2012-002.txt
http://support.f5.com/kb/en-us/solutions/public/13000/600/sol13600.html	Vendor Advisory
http://www.theregister.co.uk/2012/06/13/f5_kit_metasploit_exploit/
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb	Exploit Patch
https://www.trustmatta.com/advisories/MATTA-2012-002.txt

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:f5:big-ip_application_security_manager:9.2.0:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:9.2.0:hf4::::::
	cpe:2.3:a:f5:big-ip_application_security_manager:9.4.4:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:9.4.5:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:9.4.6:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:9.4.7:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:9.4.8:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:10.0.0:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:10.0.1:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:10.2.3:hf1::::::
	cpe:2.3:a:f5:big-ip_application_security_manager:11.0.0:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:11.0.0:hf1::::::
	cpe:2.3:a:f5:big-ip_application_security_manager:11.1.0:::::::*
	cpe:2.3:a:f5:big-ip_application_security_manager:11.1.0:hf2::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager:9.2.2:::::::*
	cpe:2.3:a:f5:big-ip_global_traffic_manager:9.4.8:hf4::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager:10.0.0:::::::*
	cpe:2.3:a:f5:big-ip_global_traffic_manager:10.2.3:hf1::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager:11.0.0:::::::*
	cpe:2.3:a:f5:big-ip_global_traffic_manager:11.0.0:hf1::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager:11.1.0:::::::*
	cpe:2.3:a:f5:big-ip_global_traffic_manager:11.1.0:hf2::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager:9.0.0:::::::*
	cpe:2.3:a:f5:big-ip_local_traffic_manager:9.4.8:hf4::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager:10.0.0:::::::*
	cpe:2.3:a:f5:big-ip_local_traffic_manager:10.2.3:hf1::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager:11.0.0:::::::*
	cpe:2.3:a:f5:big-ip_local_traffic_manager:11.0.0:hf1::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager:11.1.0:::::::*
	cpe:2.3:a:f5:big-ip_local_traffic_manager:11.1.0:hf2::::::
	cpe:2.3:o:f5:tmos::::::::
	cpe:2.3:o:f5:tmos:2.0:::::::*
	cpe:2.3:o:f5:tmos:4.0:::::::*
	cpe:2.3:o:f5:tmos:4.2:::::::*
	cpe:2.3:o:f5:tmos:4.3:::::::*
	cpe:2.3:o:f5:tmos:4.4:::::::*
	cpe:2.3:o:f5:tmos:4.5:::::::*
	cpe:2.3:o:f5:tmos:4.5.6:::::::*
	cpe:2.3:o:f5:tmos:4.5.9:::::::*
	cpe:2.3:o:f5:tmos:4.5.10:::::::*
	cpe:2.3:o:f5:tmos:4.5.11:::::::*
	cpe:2.3:o:f5:tmos:4.5.12:::::::*
	cpe:2.3:o:f5:tmos:4.6:::::::*
	cpe:2.3:o:f5:tmos:4.6.2:::::::*
	cpe:2.3:o:f5:tmos:9.0:::::::*
	cpe:2.3:o:f5:tmos:9.0.1:::::::*
	cpe:2.3:o:f5:tmos:9.0.2:::::::*
	cpe:2.3:o:f5:tmos:9.0.3:::::::*
	cpe:2.3:o:f5:tmos:9.0.4:::::::*
	cpe:2.3:o:f5:tmos:9.0.5:::::::*
	cpe:2.3:o:f5:tmos:9.1:::::::*
	cpe:2.3:o:f5:tmos:9.1.1:::::::*
	cpe:2.3:o:f5:tmos:9.1.2:::::::*
	cpe:2.3:o:f5:tmos:9.1.3:::::::*
	cpe:2.3:o:f5:tmos:9.2:::::::*
	cpe:2.3:o:f5:tmos:9.2.2:::::::*
	cpe:2.3:o:f5:tmos:9.2.3:::::::*
	cpe:2.3:o:f5:tmos:9.2.4:::::::*
	cpe:2.3:o:f5:tmos:9.2.5:::::::*
	cpe:2.3:o:f5:tmos:9.3:::::::*
	cpe:2.3:o:f5:tmos:9.3.1:::::::*
	cpe:2.3:o:f5:tmos:9.4:::::::*
cpe:2.3:o:f5:tmos:9.4.1:::::::*
cpe:2.3:o:f5:tmos:9.4.2:::::::*
cpe:2.3:o:f5:tmos:9.4.3:::::::*
cpe:2.3:o:f5:tmos:9.4.4:::::::*
cpe:2.3:o:f5:tmos:9.4.5:::::::*
cpe:2.3:o:f5:tmos:9.4.6:::::::*
cpe:2.3:o:f5:tmos:9.4.7:::::::*
cpe:2.3:o:f5:tmos:9.4.8:::::::*
cpe:2.3:o:f5:tmos:9.6.0:::::::*
cpe:2.3:o:f5:tmos:9.6.1:::::::*
cpe:2.3:o:f5:tmos:10.0.0:::::::*
cpe:2.3:o:f5:tmos:10.0.1:::::::*
cpe:2.3:o:f5:tmos:10.1.0:::::::*
cpe:2.3:o:f5:tmos:10.2.0:::::::*

OR	cpe:2.3:h:f5:big-ip_1000::::::::
	cpe:2.3:h:f5:big-ip_11000::::::::
	cpe:2.3:h:f5:big-ip_11050::::::::
	cpe:2.3:h:f5:big-ip_1500::::::::
	cpe:2.3:h:f5:big-ip_1600::::::::
	cpe:2.3:h:f5:big-ip_2400::::::::
	cpe:2.3:h:f5:big-ip_3400::::::::
	cpe:2.3:h:f5:big-ip_3410::::::::
	cpe:2.3:h:f5:big-ip_3600::::::::
	cpe:2.3:h:f5:big-ip_3900::::::::
	cpe:2.3:h:f5:big-ip_4100::::::::
	cpe:2.3:h:f5:big-ip_5100::::::::
	cpe:2.3:h:f5:big-ip_5110::::::::
	cpe:2.3:h:f5:big-ip_6400::::::::
	cpe:2.3:h:f5:big-ip_6800::::::::
	cpe:2.3:h:f5:big-ip_6900::::::::
	cpe:2.3:h:f5:big-ip_8400::::::::
	cpe:2.3:h:f5:big-ip_8800::::::::
	cpe:2.3:h:f5:big-ip_8900::::::::
	cpe:2.3:h:f5:big-ip_8950::::::::

Configuration 2 (hide)

OR	cpe:2.3:a:f5:enterprise_manager:::virtual:::::*
	cpe:2.3:a:f5:enterprise_manager:1.0::virtual:::::
	cpe:2.3:a:f5:enterprise_manager:2.0::virtual:::::
	cpe:2.3:a:f5:enterprise_manager:2.1.0::virtual:::::
	cpe:2.3:a:f5:enterprise_manager:2.1.0:hf1:virtual:::::*
	cpe:2.3:a:f5:enterprise_manager:2.2.0::virtual:::::
	cpe:2.3:a:f5:enterprise_manager:2.3.0::virtual:::::
	cpe:2.3:a:f5:enterprise_manager:2.3.0:hf2:virtual:::::*
	cpe:2.3:h:f5:enterprise_manager::::::::
	cpe:2.3:h:f5:enterprise_manager:1.0:::::::*
	cpe:2.3:h:f5:enterprise_manager:2.0:::::::*
	cpe:2.3:h:f5:enterprise_manager:2.1.0:::::::*
	cpe:2.3:h:f5:enterprise_manager:2.1.0:hf1::::::
	cpe:2.3:h:f5:enterprise_manager:2.2.0:::::::*
	cpe:2.3:h:f5:enterprise_manager:2.3.0:::::::*
	cpe:2.3:h:f5:enterprise_manager:2.3.0:hf2::::::

History

21 Nov 2024, 01:37

Type	Values Removed	Values Added
References	~~() http://support.f5.com/kb/en-us/solutions/public/13000/600/sol13600.html - Vendor Advisory~~	() http://support.f5.com/kb/en-us/solutions/public/13000/600/sol13600.html - Vendor Advisory
References	~~() http://www.theregister.co.uk/2012/06/13/f5_kit_metasploit_exploit/ -~~	() http://www.theregister.co.uk/2012/06/13/f5_kit_metasploit_exploit/ -
References	~~() https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb - Exploit, Patch~~	() https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb - Exploit, Patch
References	~~() https://www.trustmatta.com/advisories/MATTA-2012-002.txt -~~	() https://www.trustmatta.com/advisories/MATTA-2012-002.txt -

Information

Published : 2012-07-09 22:55

Updated : 2024-11-21 01:37

NVD link : CVE-2012-1493

Mitre link : CVE-2012-1493

CVE.ORG link : CVE-2012-1493

JSON object : View

Products Affected

big-ip_6800
enterprise_manager
big-ip_8800
big-ip_8400
big-ip_1600
big-ip_application_security_manager
big-ip_2400
big-ip_3410
big-ip_3600
big-ip_3900
big-ip_6400
big-ip_8900
tmos
big-ip_8950
big-ip_11050
big-ip_4100
big-ip_6900
big-ip_1500
big-ip_11000
big-ip_1000
big-ip_5110
big-ip_global_traffic_manager
big-ip_3400
big-ip_5100
big-ip_local_traffic_manager

CWE

CWE-255

Credentials Management Errors

7.8 /10