PT-2012-1402 · Blue Coat · Blue Coat Proxysg
Published
2012-08-26
·
Updated
2012-08-27
·
CVE-2010-5190
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Blue Coat ProxySG versions prior to 4.3.4.2
Blue Coat ProxySG versions 5.x prior to 5.4.5.1
Blue Coat ProxySG versions 5.5 prior to 5.5.4.1
Blue Coat ProxySG versions 6.x prior to 6.1.2.1
Description
The issue allows remote attackers to bypass JavaScript detection via HTML entities in the Active Content Transformation functionality.
Recommendations
For versions prior to 4.3.4.2, update to SGOS 4.3.4.2 or later.
For versions 5.x prior to 5.4.5.1, update to SGOS 5.4.5.1 or later.
For versions 5.5 prior to 5.5.4.1, update to SGOS 5.5.4.1 or later.
For versions 6.x prior to 6.1.2.1, update to SGOS 6.1.2.1 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Blue Coat Proxysg