CVE-2015-4523

Name of the Vulnerable Software and Affected Versions Blue Coat Malware Analysis Appliance (MAA) versions prior to 4.2.5 Malware Analyzer G2 (affected versions not specified)

Description The issue allows remote attackers to bypass a virtual machine protection mechanism. This can lead to writing to arbitrary files, causing a denial of service (resulting in a host reboot or reset to factory defaults), or executing arbitrary code. The attack vectors are related to saving files during analysis.

Recommendations For Blue Coat Malware Analysis Appliance (MAA) versions prior to 4.2.5, update to version 4.2.5 or later to resolve the issue. For Malware Analyzer G2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.