Description
Blue Coat Systems Inc. WinProxy before 6.1a allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of packets with 0xFF characters to the Telnet port (TCP 23), which corrupts the heap.
Affected products
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy4.0 – 4.0
- bluecoat / webproxy5.0 – 5.0
- bluecoat / webproxy5.0 – 5.0
- bluecoat / webproxy5.0 – 5.0
- bluecoat / webproxy5.1 – 5.1
- bluecoat / webproxy5.1 – 5.1
- bluecoat / webproxy5.1 – 5.1
- bluecoat / webproxy5.2 – 5.2
- bluecoat / webproxy6.0 – 6.0
- bluecoat / webproxy6.0 – 6.0
References
- MISChttp://securitytracker.com/id?1015442
- MISChttp://securityreason.com/securityalert/322
- MISChttp://www.winproxy.com/products/relnotes.asp
- MISChttp://www.idefense.com/intelligence/vulnerabilities/display.php?id=365
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/0065
- VENDOR_ADVISORYhttp://secunia.com/advisories/18288
- MISChttp://www.securityfocus.com/bid/16149