CVE-2014-2033

Name of the Vulnerable Software and Affected Versions Blue Coat ProxySG versions 5.5 through 5.5.11.3 Blue Coat ProxySG versions 6.1 through 6.1.6.3 Blue Coat ProxySG versions 6.2 through 6.2.15.3 Blue Coat ProxySG versions 6.4 through 6.4.6.1 Blue Coat ProxySG version 6.3 Blue Coat ProxySG versions 6.5 before 6.5.4

Description The caching feature in SGOS allows remote authenticated users to bypass intended access restrictions during a time window after account deletion or modification by leveraging knowledge of previously valid credentials.

Recommendations For Blue Coat ProxySG versions 5.5 through 5.5.11.3, update to a version after 5.5.11.3 to resolve the issue. For Blue Coat ProxySG versions 6.1 through 6.1.6.3, update to a version after 6.1.6.3 to resolve the issue. For Blue Coat ProxySG versions 6.2 through 6.2.15.3, update to a version after 6.2.15.3 to resolve the issue. For Blue Coat ProxySG versions 6.4 through 6.4.6.1, update to a version after 6.4.6.1 to resolve the issue. For Blue Coat ProxySG version 6.3, update to version 6.5.4 or later to resolve the issue. For Blue Coat ProxySG versions 6.5 before 6.5.4, update to version 6.5.4 or later to resolve the issue.