virus logo Intrusion Prevention

Blue.Coat.BCAAA.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt against a remote Code Execution vulnerability in Blue Coat Authentication and Authorization Agent.
The vulnerability is caused by the program's failure to properly sanitize user supplied input, resulting in a stack-based buffer overflow. It allows a remote attacker to execute arbitrary code by sending a specially crafted packet to TCP port 16102.

affected-products-logoAffected Products

Blue Coat BCAAA 4.x

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version, available from the website.
https://bto.bluecoat.com/download

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://seclists.org/bugtraq/2011/Jul/44
ID 29103
Created Sep 09, 2011
Updated Apr 23, 2014
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App Other
Profile Type BufferErrors