cnvd - cnvd-2017-05236

cnvd-2017-05236

Vulnerability from cnvd

Title: Bluecoat ASG 6.6/CAS OS命令注入漏洞漏洞

Description:

Blue Coat Advanced Secure Gateway（ASG）和Content Analysis System（CAS）都是美国Blue Coat Systems公司的产品。ASG是一套安全Web网关设备；CAS是一套集成了应用程序白名单和双重反恶意软件签名数据库的恶意软件分析系统。

Blue Coat ASG 6.6.5.4之前的6.6版本和CAS 1.3.7.4之前的1.3版本中存在OS命令注入漏洞。攻击者可利用该漏洞以提升的系统权限执行任意的OS命令。

Severity: 高

Patch Name: Bluecoat ASG 6.6/CAS OS命令注入漏洞漏洞的补丁

Patch Description:

Blue Coat ASG 6.6.5.4之前的6.6版本和CAS 1.3.7.4之前的1.3版本中存在OS命令注入漏洞。攻击者可利用该漏洞以提升的系统权限执行任意的OS命令。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可联系供应商获得补丁信息： https://bto.bluecoat.com/security-advisory/sa138

Reference: https://www.exploit-db.com/exploits/41785/ http://www.securityfocus.com/bid/97372

Impacted products

Name
['Blue Coat Advanced Secure Gateway (ASG) 6.6，<6.6.5.4', 'Blue Coat Content Analysis System (CAS) 1.3，<1.3.7.4']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "41785"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-9091"
    }
  },
  "description": "Blue Coat Advanced Secure Gateway\uff08ASG\uff09\u548cContent Analysis System\uff08CAS\uff09\u90fd\u662f\u7f8e\u56fdBlue Coat Systems\u516c\u53f8\u7684\u4ea7\u54c1\u3002ASG\u662f\u4e00\u5957\u5b89\u5168Web\u7f51\u5173\u8bbe\u5907\uff1bCAS\u662f\u4e00\u5957\u96c6\u6210\u4e86\u5e94\u7528\u7a0b\u5e8f\u767d\u540d\u5355\u548c\u53cc\u91cd\u53cd\u6076\u610f\u8f6f\u4ef6\u7b7e\u540d\u6570\u636e\u5e93\u7684\u6076\u610f\u8f6f\u4ef6\u5206\u6790\u7cfb\u7edf\u3002\r\n\r\nBlue Coat ASG 6.6.5.4\u4e4b\u524d\u76846.6\u7248\u672c\u548cCAS 1.3.7.4\u4e4b\u524d\u76841.3\u7248\u672c\u4e2d\u5b58\u5728OS\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4ee5\u63d0\u5347\u7684\u7cfb\u7edf\u6743\u9650\u6267\u884c\u4efb\u610f\u7684OS\u547d\u4ee4\u3002",
  "discovererName": "Peter Paccione, Chris Hebert, and Corey Boyd.",
  "formalWay": "\u7528\u6237\u53ef\u8054\u7cfb\u4f9b\u5e94\u5546\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://bto.bluecoat.com/security-advisory/sa138",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-05236",
  "openTime": "2017-04-24",
  "patchDescription": "Blue Coat Advanced Secure Gateway\uff08ASG\uff09\u548cContent Analysis System\uff08CAS\uff09\u90fd\u662f\u7f8e\u56fdBlue Coat Systems\u516c\u53f8\u7684\u4ea7\u54c1\u3002ASG\u662f\u4e00\u5957\u5b89\u5168Web\u7f51\u5173\u8bbe\u5907\uff1bCAS\u662f\u4e00\u5957\u96c6\u6210\u4e86\u5e94\u7528\u7a0b\u5e8f\u767d\u540d\u5355\u548c\u53cc\u91cd\u53cd\u6076\u610f\u8f6f\u4ef6\u7b7e\u540d\u6570\u636e\u5e93\u7684\u6076\u610f\u8f6f\u4ef6\u5206\u6790\u7cfb\u7edf\u3002\r\n\r\nBlue Coat ASG 6.6.5.4\u4e4b\u524d\u76846.6\u7248\u672c\u548cCAS 1.3.7.4\u4e4b\u524d\u76841.3\u7248\u672c\u4e2d\u5b58\u5728OS\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4ee5\u63d0\u5347\u7684\u7cfb\u7edf\u6743\u9650\u6267\u884c\u4efb\u610f\u7684OS\u547d\u4ee4\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Bluecoat ASG 6.6/CAS OS\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Blue Coat Advanced Secure Gateway (ASG) 6.6\uff0c\u003c6.6.5.4",
      "Blue Coat Content Analysis System (CAS) 1.3\uff0c\u003c1.3.7.4"
    ]
  },
  "referenceLink": "https://www.exploit-db.com/exploits/41785/\r\nhttp://www.securityfocus.com/bid/97372",
  "serverity": "\u9ad8",
  "submitTime": "2017-04-05",
  "title": "Bluecoat ASG 6.6/CAS OS\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u6f0f\u6d1e"
}

CVE-2016-9091 (GCVE-0-2016-9091)

Vulnerability from cvelistv5

Published

2017-04-05 15:00

Modified

2024-08-06 02:42

Severity ?

CWE

OS command injection

Summary

Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges.

References

▼	URL	Tags
	http://www.securityfocus.com/bid/97372	vdb-entry, x_refsource_BID
	https://www.exploit-db.com/exploits/41785/	exploit, x_refsource_EXPLOIT-DB
	https://www.exploit-db.com/exploits/41786/	exploit, x_refsource_EXPLOIT-DB
	https://bto.bluecoat.com/security-advisory/sa138	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

▼

Symantec Corporation

Blue Coat ASG

Version: 6.6 prior to 6.6.5.4

Symantec Corporation

Blue Coat CAS

Version: 1.3 prior to 1.3.7.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T02:42:10.359Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "97372",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/97372"
          },
          {
            "name": "41785",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/41785/"
          },
          {
            "name": "41786",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/41786/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bto.bluecoat.com/security-advisory/sa138"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Blue Coat ASG",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "6.6 prior to 6.6.5.4"
            }
          ]
        },
        {
          "product": "Blue Coat CAS",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "1.3 prior to 1.3.7.4"
            }
          ]
        }
      ],
      "datePublic": "2017-04-03T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "OS command injection",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-15T09:57:01",
        "orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
        "shortName": "symantec"
      },
      "references": [
        {
          "name": "97372",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/97372"
        },
        {
          "name": "41785",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/41785/"
        },
        {
          "name": "41786",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/41786/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bto.bluecoat.com/security-advisory/sa138"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@symantec.com",
          "ID": "CVE-2016-9091",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Blue Coat ASG",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "6.6 prior to 6.6.5.4"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Blue Coat CAS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "1.3 prior to 1.3.7.4"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Symantec Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "OS command injection"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "97372",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/97372"
            },
            {
              "name": "41785",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/41785/"
            },
            {
              "name": "41786",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/41786/"
            },
            {
              "name": "https://bto.bluecoat.com/security-advisory/sa138",
              "refsource": "CONFIRM",
              "url": "https://bto.bluecoat.com/security-advisory/sa138"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
    "assignerShortName": "symantec",
    "cveId": "CVE-2016-9091",
    "datePublished": "2017-04-05T15:00:00",
    "dateReserved": "2016-10-28T00:00:00",
    "dateUpdated": "2024-08-06T02:42:10.359Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted