CVE-2005-4085

Buffer overflow in BlueCoat (a) WinProxy before 6.1a and (b) the web console access functionality in ProxyAV before 2.4.2.3 allows remote attackers to execute arbitrary code via a long Host: header.

Published: Dec 31, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-4085
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
bluecoat / webproxy	5.0-r1c	5.0-r1c.x
bluecoat / webproxy	4.0-r1h	4.0-r1h.x
bluecoat / webproxy	5.0-r1b	5.0-r1b.x
bluecoat / webproxy	4.0-r1e	4.0-r1e.x
bluecoat / webproxy	4.0-r1b	4.0-r1b.x
bluecoat / webproxy	4.0-r1a	4.0-r1a.x
bluecoat / webproxy	5.2-r1a	5.2-r1a.x
bluecoat / webproxy	4.0-r1k	4.0-r1k.x
bluecoat / webproxy	4.0-r1f	4.0-r1f.x
bluecoat / webproxy	5.1-r1d	5.1-r1d.x
bluecoat / webproxy	4.0-r1c	4.0-r1c.x
bluecoat / webproxy	5.0-r1a	5.0-r1a.x
bluecoat / webproxy	5.1-r1a	5.1-r1a.x
bluecoat / webproxy	5.1-r1e	5.1-r1e.x
bluecoat / webproxy	4.0-r1n	4.0-r1n.x
bluecoat / webproxy	6.0-r1c	6.0-r1c.x
bluecoat / webproxy	6.0-r1a	6.0-r1a.x
bluecoat / webproxy	4.0-r1m	4.0-r1m.x
bluecoat / webproxy	4.0-r1p	4.0-r1p.x
bluecoat / proxyav	-	-

Vulnerability Database

289,599

CVE-2005-4085