Arbitrary Command Execution via HTTPS Session in Blue Coat ProxySG

Arbitrary Command Execution via HTTPS Session in Blue Coat ProxySG

CVE-2010-5189 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging read-only administrator privileges and establishing an HTTPS session.

Learn more about our User Device Pen Test.