Vulnerabilities > Blue Coat Systems

DATE CVE VULNERABILITY TITLE RISK
2008-10-09 CVE-2008-4515 Improper Authentication vulnerability in Blue Coat Systems K9 web Protection 4.0.230
Blue Coat K9 Web Protection 4.0.230 Beta relies on client-side JavaScript as a protection mechanism, which allows remote attackers to bypass authentication and access the (1) summary, (2) detail, (3) overrides, and (4) pwemail pages by disabling JavaScript.
network
low complexity
blue-coat-systems CWE-287
7.5
2008-08-01 CVE-2007-2952 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Blue Coat Systems Filter and K9 web Protection
Multiple stack-based buffer overflows in the filter service (aka k9filter.exe) in Blue Coat K9 Web Protection 3.2.44 with Filter 3.2.32 allow (1) remote attackers to execute arbitrary code via a long HTTP Referer header to the K9 Web Protection Administration interface and (2) man-in-the-middle attackers to execute arbitrary code via an HTTP response with a long HTTP version field.
network
blue-coat-systems CWE-119
critical
9.3