CVSS: 5.0EPSS: 6%CPEs: 1EXPL: 1CVE-2005-3187 – BlueCoat WinProxy 6.0 R1c - GET Denial of Service
https://notcve.org/view.php?id=CVE-2005-3187
The listening daemon in Blue Coat Systems Inc. WinProxy before 6.1a allows remote attackers to cause a denial of service (crash) via a long HTTP request that causes an out-of-bounds read. • https://www.exploit-db.com/exploits/1409 http://secunia.com/advisories/18288 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=363 http://www.securityfocus.com/bid/16148 http://www.vupen.com/english/advisories/2006/0065 •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1CVE-2005-1708 – Blue Coat Reporter 7.0/7.1 - Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-1708
templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true. • https://www.exploit-db.com/exploits/25697 http://marc.info/?l=bugtraq&m=111695726810435&w=2 http://secunia.com/advisories/15452 http://www.bluecoat.com/support/knowledge/advisory_reporter_711_vulnerabilities.html http://www.osvdb.org/16763 http://www.securityfocus.com/bid/13723 http://www.vupen.com/english/advisories/2005/0589 •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 1CVE-2005-1709 – Blue Coat Reporter 7.0/7.1 - License HTML Injection
https://notcve.org/view.php?id=CVE-2005-1709
Unknown vulnerability in Blue Coat Reporter before 7.1.2 allows remote unauthenticated attackers to add a license. • https://www.exploit-db.com/exploits/25698 http://secunia.com/advisories/15452 http://www.bluecoat.com/support/knowledge/advisory_reporter_711_vulnerabilities.html http://www.osvdb.org/16764 http://www.securityfocus.com/bid/13725 http://www.vupen.com/english/advisories/2005/0589 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2005-1710
https://notcve.org/view.php?id=CVE-2005-1710
Multiple cross-site scripting (XSS) vulnerabilities in Blue Coat Reporter before 7.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the username in an Add User window or (2) the license key (volatile.license_to_add parameter) in the Licensing page. • http://marc.info/?l=bugtraq&m=111695726810435&w=2 http://secunia.com/advisories/15452 http://www.bluecoat.com/support/knowledge/advisory_reporter_711_vulnerabilities.html http://www.osvdb.org/16765 http://www.osvdb.org/16766 http://www.vupen.com/english/advisories/2005/0589 •
CVSS: 5.0EPSS: 0%CPEs: 252EXPL: 0CVE-2004-0081
https://notcve.org/view.php?id=CVE-2004-0081
OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. OpenSSL 0.9.6 anteriores a la 0.9.6d no manejan adecuadamente los tipos de mensajes desconocidos, lo que permite a atacantes remotos causar una denegación de servicios (por bucle infinito), como se demuestra utilizando la herramienta de testeo Codenomicon TLS. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txt ftp://patches.sgi.com/support/free/security/advisories/20040304-01-U.asc http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000834 http://fedoranews.org/updates/FEDORA-2004-095.shtml http://marc.info/?l=bugtraq&m=107955049331965&w=2 http://marc.info/?l=bugtraq&m=108403850228012&w=2 http://rhn.redhat.com/errata/RHSA-2004-119.html http://secunia.com/advisories/11139 http://security.gen •