BugZero | F5 BugID 755001 - IE8 showing Operation Aborted error during Bot Def...

F5 - Defect ID: 755001

IE8 showing Operation Aborted error during Bot Defense challenge

F5 - Defect ID: 755001

IE8 showing Operation Aborted error during Bot Defense challenge

Last updated on December 18th, 2024

BugZero Risk Score
6.3 Medium

Overall: 6.3

Severity: 6.4

Community: 4.1

Lifecycle: 6.4

What is the BugZero Risk Score?

F5 Integration

Learn more about where this data comes from

F5 Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Priority: 4-Minor
Status: Not Verified
Impact Category: Application Security Manager

Description

Symptoms

On same cases, Microsoft Internet Explorer version 8 (IE8) might report the following error message: Unable to open the Internet site http://x.x.x.x/. Operation aborted This is happening only on specific IE8 instances; some other instances do not show the error. The error is displayed when the address includes a hash (#) at the end, and a Bot Defense challenge is used. When there are additional parameters after the hash, the error is not seen.

Impact

Page fails to load due to the Internet Explorer error.

Conditions

-- IE8 is used by the end user. -- Bot Defense is enabled. -- Address includes a hash (#) at the end without any additional parameters after the hash.

Workaround

Applying the following iRule should work around the problem. However, this is applicable only if the client-side application does not expect hash parameters. ===================== when BOTDEFENSE_ACTION { set cookies [HTTP::cookie names] set tscookie_flag "0" foreach aCookie $cookies { if { $aCookie matches_regex {^TS(?:[0-9a-fA-F]{6,12})(?:$|_[0-9]+$)} } { set tscookie_flag "1" } } log local0. "$cookies tscookie_flag $tscookie_flag" set ua [HTTP::header value User-Agent] if {[BOTDEFENSE::action] eq "redirect_challenge" && ( $ua contains "MSIE 6.0" || $ua contains "MSIE 7.0" || $ua contains "MSIE 8.0" )} { BOTDEFENSE::action allow } if {[BOTDEFENSE::action] eq "browser_challenge" && ( $ua contains "MSIE 6.0" || $ua contains "MSIE 7.0" || $ua contains "MSIE 8.0" ) && $tscookie_flag eq "0"} { BOTDEFENSE::action custom_response "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 3.2//EN\"> <html> <head> <meta http-equiv=\"refresh\" content=\"0; url=[HTTP::uri]\"> </head> <body> </body> </html>" } } =====================

Fix Information

None

Change history

2025-03-22 Added: 13.1.0, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5, 13.1.0.6, 13.1.0.7, 13.1.0.8, 13.1.1, 13.1.1.2, 13.1.1.3, 13.1.1.4, 13.1.1.5, 13.1.3, 13.1.3.1, 13.1.3.2, 13.1.3.3, 13.1.3.4, 13.1.3.5, 13.1.3.6, 13.1.4, 13.1.4.1, 13.1.5, 13.1.5.1, 14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.0.1.1, 14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.4.6, 14.1.5, 14.1.5.1, 14.1.5.2, 14.1.5.3, 14.1.5.4, 14.1.5.6, 15.0.0, 15.0.1, 15.0.1.1, 15.0.1.2, 15.0.1.3, 15.0.1.4, 15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3, 15.1.10.4, 15.1.10.5, 15.1.10.6

Links

Original Vendor Announcement

Relevant Products

Click on a version to see all relevant bugs

Affected versions:13.1.0, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5, 13.1.0.6, 13.1.0.7, 13.1.0.8, 13.1.1, 13.1.1.2, 13.1.1.3, 13.1.1.4, 13.1.1.5, 13.1.3, 13.1.3.1, 13.1.3.2, 13.1.3.3, 13.1.3.4, 13.1.3.5, 13.1.3.6, 13.1.4, 13.1.4.1, 13.1.5, 13.1.5.1, 14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.0.1.1, 14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.4.6, 14.1.5, 14.1.5.1, 14.1.5.2, 14.1.5.3, 14.1.5.4, 14.1.5.6, 15.0.0, 15.0.1, 15.0.1.1, 15.0.1.2, 15.0.1.3, 15.0.1.4, 15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3, 15.1.10.4, 15.1.10.5, 15.1.10.6

Fixed versions: No known fixed versions

Relevant Products

Click on a version to see all relevant bugs

Fixed versions: No known fixed versions

Top F5 Defects by Risk Score

No bugs this month

F5 Integration

Learn more about where this data comes from

F5 Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

F5 - Defect ID: 755001

IE8 showing Operation Aborted error during Bot Defense challenge

F5 - Defect ID: 755001

IE8 showing Operation Aborted error during Bot Defense challenge

Last updated on December 18th, 2024

BugZero Risk Score6.3 Medium

Bug Details

Symptoms

Impact

Conditions

Workaround

Fix Information

Links

Top F5 Defects by Risk Score

Ready to prevent the next vendor outage?

BugZero Risk Score
6.3 Medium