Bluecoat SSL Visibility CVE-2016-10259 Denial of Service Vulnerability

Bluecoat SSL Visibility is prone to a denial-of-service vulnerability.

Attackers can exploit this issue to cause TCP connection pool exhaustion, leading to a denial-of-service condition.

Bluecoat SSL Visibility prior to 3.11.3.1 are vulnerable.

Information

Bugtraq ID: 97525
Class: Design Error
CVE: CVE-2016-10259

Remote: Yes
Local: No
Published: Apr 07 2017 12:00AM
Updated: Apr 10 2017 09:05PM
Credit: NTT-ME Corporation Security Team.
Vulnerable: Bluecoat SSL Visibility 3.8
Bluecoat SSL Visibility 3.9.4.1
Bluecoat SSL Visibility 3.9
Bluecoat SSL Visibility 3.8FC
Bluecoat SSL Visibility 3.8.4FC
Bluecoat SSL Visibility 3.8.2F
Bluecoat SSL Visibility 3.8
Bluecoat SSL Visibility 3.7
Bluecoat SSL Visibility 3.6
Bluecoat SSL Visibility 3.11
Bluecoat SSL Visibility 3.10

Not Vulnerable: Bluecoat SSL Visibility 3.11.3.1

References:

BlueCoat Homepage (BlueCoat)
SA142: Invalid TCP Packet Generation DoS in SSL Visibility (BlueCoat)

Source: www.securityfocus.com

Exploit Collector

Search Exploit

Bluecoat SSL Visibility CVE-2016-10259 Denial of Service Vulnerability

Information