Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0578

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0578
Last Modified 07 Mar 2011 09:30:21
Published 07 Feb 2006 08:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0578

Summary

Blue Coat Proxy Security Gateway OS (SGOS) 4.1.2.1 does not enforce CONNECT rules when using Deep Content Inspection, which allows remote attackers to bypass connection filters.

Vulnerable Systems

Operating System

  • Bluecoat Proxysg 4.1.2.1


References

VUPEN - ADV-2006-0401

MISC - http://www.secumind.net/content/french/modules/news/article.php?storyid=8

SECUNIA - 18622

XF - proxysg-connect-bypass-security(24446)

OSVDB - 22853

CONFIRM - http://www.bluecoat.com/support/knowledge/advisory_connect_denial_ignore.html

SECTRACK - 1015644


Last Updated: 27 May 2016 10:41:42