Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/97372 | VDB Entry Third Party Advisory |
https://bto.bluecoat.com/security-advisory/sa138 | Mitigation Vendor Advisory |
https://www.exploit-db.com/exploits/41785/ | |
https://www.exploit-db.com/exploits/41786/ |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: symantec
Published: 2017-04-05T15:00:00
Updated: 2017-08-15T09:57:01
Reserved: 2016-10-28T00:00:00
Link: CVE-2016-9091
JSON object: View
NVD Information
Status : Modified
Published: 2017-04-05T15:59:00.170
Modified: 2017-08-16T01:29:11.507
Link: CVE-2016-9091
JSON object: View
Redhat Information
No data.
CWE