Bug ID 556780: Portal Access should ignore incorrect IE-specific cookies with empty name and value

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
11.6.0, 11.6.1, 11.6.2, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1

Fixed In:
13.1.0

Opened: Nov 07, 2015

Severity: 4-Minor

Symptoms

IE-specific cookies with empty name and value are being sent to backend. Request header in a traffic dump between APM and backend could look like "Cookie: =;<other cookies>" for example.

Impact

Errors from backend applications which are unable to handle such cookies.

Conditions

This can occur with cookies being sent via Internet Explorer through Portal Access.

Workaround

None

Fix Information

Cookies with empty name and value will no longer be sent to backend application via Portal Access

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips