Bug ID 601924: Selenium detection by ports scanning doesn't work even if the ports are opened

Last Modified: Nov 20, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2

Fixed In:
13.0.0, 12.1.2

Opened: Jun 28, 2016
Severity: 3-Major

Symptoms

When selenium server package is running on an end point and a traffic being sent from there, proactive bot defense mechanism doesn't see selenium server opened ports.

Impact

Low impact as the selenium detection by ports scan has a low score and doesn't mitigate a client, unless it has another suspicious client properties (for example tor browser)

Conditions

This occurs when ASM is provisioned with proactive bot defense enabled.

Workaround

N/A

Fix Information

Ports scanning has fixed - wider range of ports are scanned.

Behavior Change