CVE-2011-5124

Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packet to the synchronization port (16102/tcp).

Published: Aug 26, 2012
Updated: Apr 13, 2023
CVE: CVE-2011-5124
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
bluecoat / proxysg	6	6.x
bluecoat / proxysg	4.2.6	4.2.6.x
bluecoat / proxysg	5.2	5.2.x
bluecoat / proxysg	5.1.6.1	5.1.6.1.x
bluecoat / proxysg	5.2.5.2	5.2.5.2.x
bluecoat / proxysg	5.4	5.4.x
bluecoat / proxysg	5.1	5.1.x
bluecoat / proxysg	4.3.2.3	4.3.2.3.x
bluecoat / proxysg	5.2.2.4	5.2.2.4.x
bluecoat / proxyone	-	-
bluecoat / proxysg	5.3	5.3.x
bluecoat / proxysg	5.4.1.1	5.4.1.1.x
bluecoat / proxysg	5.3.2.1	5.3.2.1.x

https://kb.bluecoat.com/index?page=content&id=SA55

Vulnerability Database

289,697

CVE-2011-5124