CVE-2007-1685

Severity

99%

Complexity

99%

Confidentiality

165%

Buffer overflow in k9filter.exe in BlueCoat K9 Web Protection 3.2.36, and probably other versions before 3.2.44, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request to port 2372.

Buffer overflow in k9filter.exe in BlueCoat K9 Web Protection 3.2.36, and probably other versions before 3.2.44, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request to port 2372.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 18 years ago

2007-06-08 20:30:00

Last updated 6 years ago

2018-10-16 16:40:00

Affected Software

Blue Coat Systems K9 Web Protection 3.2.36

3.2.36

References

20070608 Re: CSIS Advisory: BlueCoat K9 Web Protection 3.2.36 Overflow

20070608 CSIS Advisory: BlueCoat K9 Web Protection 3.2.36 Overflow

37186

25593

http://www.csis.dk/dk/forside/Bluecoat-k9.pdf

VU#271601

US Government Resource

20070608 CSIS Advisory: BlueCoat K9 Web Protection 3.2.36 Overflow

24373

1018210

ADV-2007-2104

bluecoat-management-interface-bo(34773)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.