Vulnerability CVE-2010-5189


Published: 2012-08-26

Description:
Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging read-only administrator privileges and establishing an HTTPS session.

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Bluecoat -> SGOS 
Bluecoat -> Proxysg 
Bluecoat -> Proxysg sg210-10 
Bluecoat -> Proxysg sg210-25 
Bluecoat -> Proxysg sg210-5 
Bluecoat -> Proxysg sg510-10 
Bluecoat -> Proxysg sg510-20 
Bluecoat -> Proxysg sg510-25 
Bluecoat -> Proxysg sg510-5 
Bluecoat -> Proxysg sg810-10 
Bluecoat -> Proxysg sg810-20 
Bluecoat -> Proxysg sg810-25 
Bluecoat -> Proxysg sg810-5 
Bluecoat -> Proxysg sg9000-10 
Bluecoat -> Proxysg sg9000-20 
Bluecoat -> Proxysg sg9000-5 

 References:
https://kb.bluecoat.com/index?page=content&id=SA45

Copyright 2022, cxsecurity.com

 

Back to Top