EUVD-2010-5150

Malware in sbrugna...

CVE-2010-5191

Multiple cross-site request forgery CSRF vulnerabilities on the Blue Coat ProxyAV appliance before 3.2.6.1 allow remote attackers to hijack the authentication of administrators for requests that 1 change a password, 2 modify a policy, or 3 restart the device...

SA163: OpenSSH Vulnerability October 2017

SUMMARY Symantec Network Protection products using affected versions of OpenSSH are susceptible to a security vulnerability. A remote attacker with read-only access to an SFTP server can create a large number of zero-length files and deplete the target's hard disk space. AFFECTED PRODUCTS The...

SA161: Local Information Disclosure Due to Meltdown and Spectre Attacks

SUMMARY Symantec Network Protection products, which run on an affected CPU chipset and execute arbitrary code from external sources, are susceptible to several information disclosure vulnerabilities aka Meltdown and Spectre attacks. A remote attacker, with the ability to execute arbitrary code...

SA157: OpenSSL Vulnerabilities 28-Aug-2017 and 2-Nov-2017

SUMMARY Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities. A remote attacker can send a crafted X.509 certificate to cause unspecified impact. They can exploit, under certain circumstances, a computational flaw in the Montgomery...

SA141 : OpenSSL Vulnerabilities 26-Jan-2017

SUMMARY Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities. A remote attacker can exploit these vulnerabilities to cause denial of service and obtain private key information. AFFECTED PRODUCTS The following products are vulnerable:...

Blue Coat ProxyAV 3.5.x < 3.5.4.1 Multiple DoS Vulnerabilities

According to its self-reported version number, the Blue Coat ProxyAV firmware installed on the remote device is 3.5.x prior to 3.5.4.1. It is, therefore, affected by the following vulnerabilities in the bundled version of OpenSSL : - A NULL pointer dereference flaw exists in file rsaameth.c due t...

Blue Coat ProxyAV 3.5.1.1 - 3.5.1.6 Heartbeat Information Disclosure (Heartbleed)

According to its self-reported version number, the firmware installed on the remote host is affected by an information disclosure vulnerability. An out-of-bounds read error, known as the 'Heartbleed Bug', exists related to handling TLS heartbeat extensions that could allow an attacker to obtain...

Blue Coat ProxyAV < 3.2.6.1 Multiple Admin Function CSRF

According to its self-reported version number, the firmware installed on the remote host is affected by multiple admin function cross-site request forgery vulnerabilities. Note that Nessus has not tested for the issues but has instead relied only on the application's self-reported version number...

Blue Coat ProxyAV Detection

Blue Coat ProxyAV, an anti-malware appliance, was found. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69929; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/09/14"; scriptnameenglish:"Blue Coat ProxyAV Detection";...

CVE-2010-5191

Multiple cross-site request forgery CSRF vulnerabilities on the Blue Coat ProxyAV appliance before 3.2.6.1 allow remote attackers to hijack the authentication of administrators for requests that 1 change a password, 2 modify a policy, or 3 restart the device...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities on the Blue Coat ProxyAV appliance before 3.2.6.1 allow remote attackers to hijack the authentication of administrators for requests that 1 change a password, 2 modify a policy, or 3 restart the device...

CVE-2010-5191

Multiple cross-site request forgery CSRF vulnerabilities on the Blue Coat ProxyAV appliance before 3.2.6.1 allow remote attackers to hijack the authentication of administrators for requests that 1 change a password, 2 modify a policy, or 3 restart the device...

CVE-2010-5191

Blue Coat ProxyAV appliance (pre-3.2.6.1) is affected by multiple CSRF vulnerabilities that allow remote attackers to hijack administrator sessions to perform (1) password changes, (2) policy modifications, or (3) device restart. Root cause is CSRF weaknesses in the admin interface. Impact is the...

Blue Coat ProxyAV buffer overflow

Oversized Host: header buffer overflow...

[SA18909] Blue Coat ProxyAV Host Header Buffer Overflow Vulnerability

TITLE: Blue Coat ProxyAV Host Header Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA18909 VERIFY ADVISORY: http://secunia.com/advisories/18909/ CRITICAL: Moderately critical IMPACT: DoS, System access WHERE: From local network OPERATING SYSTEM: Blue Coat ProxyAV 2.x...

CVE-2005-4085

Buffer overflow in BlueCoat a WinProxy before 6.1a and b the web console access functionality in ProxyAV before 2.4.2.3 allows remote attackers to execute arbitrary code via a long Host: header...

CVE-2005-4085

CVE-2005-4085 describes a remote code execution vulnerability in Blue Coat WinProxy (and related ProxyAV web console) caused by a buffer overflow when processing a long Host header. Affected: WinProxy prior to 6.1a; ProxyAV web console prior to 2.4.2.3. Root cause: buffer overflow overwrites SEH ...

CVE-2005-4085

Buffer overflow in BlueCoat a WinProxy before 6.1a and b the web console access functionality in ProxyAV before 2.4.2.3 allows remote attackers to execute arbitrary code via a long Host: header...