“Ticketbleed” Flaw Exposes F5 Appliances to Remote Attacks (CVE-2016-9244)

Description A vulnerability, colloquially referred to as Ticketbleed vulnerability has been discovered in the TLS/SSL stack used by F5 Networks Inc. in their BIG-IP products. This vulnerability affects BIG-IP SSL virtual servers with the non-default session tickets option enabled. Very similar to the well-known Heartbleed vulnerability, Ticketbleed allows a remote attacker to extract up to […]