Vulnerability CVE-2010-5190


Published: 2012-08-26   Modified: 2012-08-27

Description:
The Active Content Transformation functionality in Blue Coat ProxySG before SGOS 4.3.4.2, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.2.1 allows remote attackers to bypass JavaScript detection via HTML entities.

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None
Affected software
Bluecoat -> SGOS 
Bluecoat -> Proxysg 
Bluecoat -> Proxysg sg210-10 
Bluecoat -> Proxysg sg210-25 
Bluecoat -> Proxysg sg210-5 
Bluecoat -> Proxysg sg510-10 
Bluecoat -> Proxysg sg510-20 
Bluecoat -> Proxysg sg510-25 
Bluecoat -> Proxysg sg510-5 
Bluecoat -> Proxysg sg810-10 
Bluecoat -> Proxysg sg810-20 
Bluecoat -> Proxysg sg810-25 
Bluecoat -> Proxysg sg810-5 
Bluecoat -> Proxysg sg9000-10 
Bluecoat -> Proxysg sg9000-20 
Bluecoat -> Proxysg sg9000-5 

 References:
https://kb.bluecoat.com/index?page=content&id=SA48

Copyright 2024, cxsecurity.com

 

Back to Top