Blue Coat K9 Web Protection Remote Command Execution Vulnerability

Blue Coat K9 Web Protection is a free suite of security software designed for home computers from Blue Coat Systems. A remote code execution vulnerability exists in Blue Coat K9 Web Protection versions 4.0 through 4.4. An attacker could exploit the vulnerability to execute arbitrary code in the...

CVE-2008-4515

Blue Coat K9 Web Protection 4.0.230 Beta relies on client-side JavaScript as a protection mechanism, which allows remote attackers to bypass authentication and access the 1 summary, 2 detail, 3 overrides, and 4 pwemail pages by disabling JavaScript...

K9 Web保护验证绕过漏洞

BUGTRAQ ID: 31584 CNCAN ID：CNCAN-2008100704 K9 Web Protection是一款桌面电脑上所使用的内容过滤解决方案，允许用户控制可访问的Internet内容。 K9 Web Protection存在验证绕过问题，本地攻击者可以利用漏洞未授权访问受影响的应用程序。 Blue Coat K9 Web Protection V4.0.230 Beta存在漏洞允许任何用户绕过位于http://127.0.0.1:2372的本地管理平台。 只要简单的禁用JavaScript可导致无需要密码访问应用程序。 Blue Coat Systems K9 We...

bluecoat-bypass.txt

Blue Coat K9 Web Protection V4.0.230 Beta Vulnerability Set 5, 2008 -- Affected Vendors: Blue Coat -- Affected Products: K9 Web Protection V4.0.230 Beta -- Download at: http://www1.k9webprotection.com/getk9/beta.php -- Vulnerability Details: A vulnerability exists in the Blue Coat K9 Web Protecti...

Blue Coat K9 Web Protection Multiple Buffer Overflow Vulnerabilities

Blue Coat K9 Web Protection is prone to a stack based buffer overflow vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Blue Coat K9 Web Protection Referer头栈溢出漏洞

BUGTRAQ ID: 30463 CVECAN ID: CVE-2007-2952 K9 Web Protection是家用电脑上所使用的内容过滤解决方案，允许用户控制可访问的Internet内容。 在访问基于Web的管理接口时K9 Web Protection的过滤服务（k9filter.exe）没有正确地处理Referer头。如果用户访问了恶意站点并向该接口返回了超长的Referer头，就可以触发栈溢出，导致执行任意指令。 Blue Coat Systems K9 Web Protection 3.2.44 Blue Coat Systems -----------------...

Blue Coat K9 Web Protection HTTP响应栈溢出漏洞

BUGTRAQ ID: 30464 CVECAN ID: CVE-2007-2952 K9 Web Protection是家用电脑上所使用的内容过滤解决方案，允许用户控制可访问的Internet内容。 K9 Web Protection的过滤服务（k9filter.exe）没有正确地处理从中央服务器（sp.cwfservice.net）所返回的HTTP版本信息，如果远程攻击者劫持了发送给中央服务器的请求并重新定向到恶意服务的话，则包含有超长HTTP版本信息的响应就可以触发栈溢出，导致在用户系统上执行任意指令。 Blue Coat Systems K9 Web Protection...

CVE-2007-2952

Multiple stack-based buffer overflows in the filter service aka k9filter.exe in Blue Coat K9 Web Protection 3.2.44 with Filter 3.2.32 allow 1 remote attackers to execute arbitrary code via a long HTTP Referer header to the K9 Web Protection Administration interface and 2 man-in-the-middle attacke...

CVE-2007-2952

Blue Coat K9 Web Protection 3.2.44 (Filter 3.2.32) has concrete stack-based buffer overflow vulnerabilities in k9filter.exe. An attacker can trigger remote code execution: (1) via a crafted long Referer header to the Web Protection Administration interface, and (2) via an HTTP response with an ov...

Secunia Research: Blue Coat K9 Web Protection Response Handling Buffer Overflows

====================================================================== Secunia Research 31/07/2008 - Blue Coat K9 Web Protection Response Handling Buffer Overflows - ====================================================================== Table of Contents Affected...

Secunia Research: Blue Coat K9 Web Protection "Referer" Header Buffer Overflow

====================================================================== Secunia Research 31/07/2008 - Blue Coat K9 Web Protection "Referer" Header Buffer Overflow - ====================================================================== Table of Contents Affected...

BlueCoat K9 Web Protection buffer overflow

Buffer overflow on parsing TCP/2372 request for 127.0.0.1 interface...

CSIS Advisory: BlueCoat K9 Web Protection 3.2.36 Overflow

CSIS Security Group has discovered a remote exploitable arbitrary overwrite, in the Blue Coat K9 Web Protection local Web configuration manager on 127.0.0.1 and port 2372. This allows an attacker to perform at least a Denial of Service condition, on the usage of internet. Since the overflow can...

Buffer overflow

Buffer overflow in k9filter.exe in BlueCoat K9 Web Protection 3.2.36, and probably other versions before 3.2.44, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long HTTP GET request to port 2372...