Security Advisories

September 30, 2003 - OpenSSL Vulnerability

Security Advisories ID:    SA12
Version:    1.0
Status:    Published
Published date:    03/09/2009
 

Advisory Severity

High

Details

Some Blue Coat Systems products use versions of OpenSSL that are vulnerable to an attack based on malformed client certificates. The attacks can be aimed at any service on the appliance that is terminating (acting as a host for) an SSL connection. The vulnerabilities are such that disabling client certificates does not prevent the attack.

A successful attack will result in a restart of CA/SA and SG appliances, which can lead to a denial of service situation.

Workarounds

Restricting access to the secure management console port to trusted IP addresses may reduce exposure.


Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
 
 
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.
 
 

Your response will be used to improve our document content.

Ask a Question