F5 LTM and CVE-2011-319 management interface

The management network be a private trusted network.

Anyway, here you are a workaround

1) Create a file with the following (you may name the file CVE-2011-3192):

httpd include ”
# Drop the Range header when more than 5 ranges
# CVE-2011-3192
SetEnvIf Range (,.*?){5,} bad-range=1
RequestHeader unset Range env=bad-range”

2) bpsh < CVE-2011-3192

3) bigstart restart httpd

Leave a Reply




You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>