Blue Coat ProxyClient prior to 3.3.3.3 and 3.4.x prior to 3.4.4.10 and Unified Agent prior to 4.1.3.151952 does not properly validate certain certificates, which allows man-in-the-middle malicious users to spoof ProxySG Client Managers, and consequently modify configurations and execute arbitrary software updates, via a crafted certificate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bluecoat proxyclient |
||
bluecoat unified agent |