Details of VAR-201512-0551

ID

VAR-201512-0551

CVE

CVE-2015-4334

TITLE

Blue Coat ProxySG of SGOS Vulnerability in which important information is obtained in default settings

Trust: 0.8

sources: JVNDB: JVNDB-2015-006134

DESCRIPTION

The default configuration of SGOS in Blue Coat ProxySG before 6.2.16.5, 6.5 before 6.5.7.1, and 6.6 before 6.6.2.1 forwards authentication challenges from upstream origin content servers (OCS) when used in an explicit proxy deployment, which makes it easier for remote attackers to obtain sensitive information via a 407 (aka Proxy Authentication Required) HTTP status code, as demonstrated when using NTLM authentication. Bluecoat ProxySG is prone to an authentication-bypass vulnerability. An attacker can exploit this issue to bypass the authentication mechanism and perform unauthorized actions. This may lead to further attacks. Blue Coat Systems ProxySG is a set of security Web gateway equipment of American Blue Coat Systems company. The appliance provides user authentication, web filtering, data loss protection, and more to control all web traffic. Remote attackers can use the 407 HTTP status code to exploit this vulnerability to obtain sensitive information. The following versions are affected: Blue Coat Systems ProxySG prior to 6.2.16.5, 6.5 prior to 6.5.7.1, and 6.6 prior to 6.6.2.1

Trust: 1.98

sources: NVD: CVE-2015-4334 // JVNDB: JVNDB-2015-006134 // BID: 85385 // VULHUB: VHN-82295

AFFECTED PRODUCTS

vendor:	symantec	model:	proxysg	scope:	lte	version:	6.6.2.0	Trust: 1.0
vendor:	symantec	model:	proxysg	scope:	gte	version:	6.5	Trust: 1.0
vendor:	symantec	model:	proxysg	scope:	lte	version:	6.2.16.4	Trust: 1.0
vendor:	symantec	model:	proxysg	scope:	lte	version:	6.5.7.0	Trust: 1.0
vendor:	symantec	model:	proxysg	scope:	gte	version:	6.2	Trust: 1.0
vendor:	symantec	model:	proxysg	scope:	gte	version:	6.6	Trust: 1.0
vendor:	blue coat	model:	proxysg	scope:	eq	version:	6.5.7.1	Trust: 0.8
vendor:	blue coat	model:	proxysg	scope:	lt	version:	6.6	Trust: 0.8
vendor:	blue coat	model:	proxysg	scope:	lt	version:	6.5	Trust: 0.8
vendor:	blue coat	model:	proxysg	scope:	eq	version:	6.6.2.1	Trust: 0.8
vendor:	bluecoat	model:	proxysg	scope:	eq	version:	6.5.7.0	Trust: 0.6
vendor:	bluecoat	model:	proxysg	scope:	eq	version:	6.6.2.0	Trust: 0.6
vendor:	bluecoat	model:	proxysg	scope:	eq	version:	6.2.16.4	Trust: 0.6

sources: JVNDB: JVNDB-2015-006134 // CNNVD: CNNVD-201512-084 // NVD: CVE-2015-4334

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-4334
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-4334
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201512-084
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-82295
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2015-4334
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-82295
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-82295 // JVNDB: JVNDB-2015-006134 // CNNVD: CNNVD-201512-084 // NVD: CVE-2015-4334

PROBLEMTYPE DATA

problemtype:

CWE-200

Trust: 1.9

sources: VULHUB: VHN-82295 // JVNDB: JVNDB-2015-006134 // NVD: CVE-2015-4334

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201512-084

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201512-084

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-006134

PATCH

title:	SA93	url:	https://bto.bluecoat.com/security-advisory/sa93	Trust: 0.8
title:	Blue Coat Systems ProxySG SGOS Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=58945	Trust: 0.6

sources: JVNDB: JVNDB-2015-006134 // CNNVD: CNNVD-201512-084

EXTERNAL IDS

db:	NVD	id:	CVE-2015-4334	Trust: 2.8
db:	SECTRACK	id:	1032149	Trust: 1.7
db:	JVNDB	id:	JVNDB-2015-006134	Trust: 0.8
db:	CNNVD	id:	CNNVD-201512-084	Trust: 0.7
db:	BID	id:	85385	Trust: 0.4
db:	SEEBUG	id:	SSVID-90029	Trust: 0.1
db:	VULHUB	id:	VHN-82295	Trust: 0.1

sources: VULHUB: VHN-82295 // BID: 85385 // JVNDB: JVNDB-2015-006134 // CNNVD: CNNVD-201512-084 // NVD: CVE-2015-4334

REFERENCES

url:	https://bto.bluecoat.com/security-advisory/sa93	Trust: 1.7
url:	https://twitter.com/bugch3ck/status/591492380294979585	Trust: 1.7
url:	http://www.securitytracker.com/id/1032149	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-4334	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-4334	Trust: 0.8

sources: VULHUB: VHN-82295 // JVNDB: JVNDB-2015-006134 // CNNVD: CNNVD-201512-084 // NVD: CVE-2015-4334

CREDITS

onas Vestberg at Sentor Managed Security Services AB.

Trust: 0.3

sources: BID: 85385

SOURCES

db:	VULHUB	id:	VHN-82295
db:	BID	id:	85385
db:	JVNDB	id:	JVNDB-2015-006134
db:	CNNVD	id:	CNNVD-201512-084
db:	NVD	id:	CVE-2015-4334

LAST UPDATE DATE

2024-11-23T22:07:53.322000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-82295	date:	2019-02-12T00:00:00
db:	BID	id:	85385	date:	2015-04-14T00:00:00
db:	JVNDB	id:	JVNDB-2015-006134	date:	2015-12-09T00:00:00
db:	CNNVD	id:	CNNVD-201512-084	date:	2019-02-15T00:00:00
db:	NVD	id:	CVE-2015-4334	date:	2024-11-21T02:30:50.950

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-82295	date:	2015-12-07T00:00:00
db:	BID	id:	85385	date:	2015-04-14T00:00:00
db:	JVNDB	id:	JVNDB-2015-006134	date:	2015-12-09T00:00:00
db:	CNNVD	id:	CNNVD-201512-084	date:	2015-12-08T00:00:00
db:	NVD	id:	CVE-2015-4334	date:	2015-12-07T20:59:05.900