Intrusion Prevention

Blue.Coat.AAA.Buffer.Overflow

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Blue Coat Authentication and Authorization Agent.
The vulnerability is caused by an error when the vulnerable software handles a malicious request. It allows a remote attacker to execute arbitrary code via sending a crafted request.

Affected Products

All versions of BCAAA associated with ProxySG releases 4.2.3, 4.3, 5.2, 5.3, 5.4, 5.5, and 6.1
All versions of BCAAA associated with ProxyOne.

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the patch available from the web site.
https://kb.bluecoat.com/index?page=content&id=SA55

CVE References

CVE-2011-5124