CVE-2013-5959

Published Sep 28, 2013

Last updated 11 years ago

Overview

Description: Blue Coat ProxySG before 6.2.14.1, 6.3.x, 6.4.x, and 6.5 before 6.5.2 allows remote attackers to cause a denial of service (memory consumption and dropped connections) via a recursive href in an HTML page, which triggers a large number of HTTP RW pipeline pre-fetch requests.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-119

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:bluecoat:proxysgos:5.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D56D1F0-B483-4786-9335-7C4CF4B9CA26"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysg:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3786BBEA-133D-43CC-A06F-B902283963DC",
            "versionEndIncluding": "5.3"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysgos:5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99D7BC17-0195-4920-A650-16505DE006EF"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysgos:5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "402CC761-1545-42F8-930C-D6E0EFE5390F"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysgos:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25371385-7D35-4101-B8E0-56037E4C00DE"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysgos:6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8BBF5F00-F29F-4997-A130-6981A0B795F8"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysgos:6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F750EA19-F0BD-4B43-9DE9-9EA041DF12C2"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysgos:6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B83B022D-F015-4193-B98D-9E722387ACE2"
          },
          {
            "criteria": "cpe:2.3:o:bluecoat:proxysgos:6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF04DE9E-28DF-4057-8555-C9B8975DB264"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References