Signature Detail
Short Name |
HTTP:MISC:BLUECOAT-HOST-HDR-OF |
|---|---|
Severity |
High |
Recommended |
No |
Category |
HTTP |
Keywords |
Blue Coat Host Header Overflow |
Release Date |
2006/06/01 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Blue Coat Host Header Overflow
This signature detects attempts to exploit a known vulnerability against Blue Coat proxy appliance. Blue Coat Reporter 7.1.1.1 and earlier might be vulnerable. Attackers can craft a malicious HTTP request, which might allow them to gain control of the affected system with elevated privileges.
Extended Description
A remote buffer-overflow vulnerability affects Blue Coat Systems WinProxy because the application fails to properly validate the length of user-supplied strings before copying them into static process buffers. An attacker may exploit this issue to execute arbitrary code with the privileges of the vulnerable application. This may facilitate unauthorized access or privilege escalation. Blue Coat Systems WinProxy 6.0 is vulnerable to this issue; other versions may also be affected. Blue Coat Systems ProxyAV is also affected by this issue.
Affected Products
- Blue Coat Systems ProxyAV Null
- Blue Coat Systems WebProxy 6.0.0
References
- BugTraq: 16147
- CVE: CVE-2005-4085
- URL: http://securitytracker.com/alerts/2006/Jan/1015441.html