Sign-up

ID

VAR-200810-0249


CVE

CVE-2008-4485


TITLE

Blue Coat SGOS of ICAP patience page Vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2008-003516

DESCRIPTION

Cross-site scripting (XSS) vulnerability in the ICAP patience page in Blue Coat Security Gateway OS (SGOS) 4.2 before 4.2.9, 5.2 before 5.2.5, and 5.3 before 5.3.1.7 allows remote attackers to inject arbitrary web script or HTML via the URL. Blue Coat WebFilter is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the vulnerable application. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. Blue Coat WebFilter 4.2, 5.2, and 5.3 are vulnerable. Input passed via the URL is not properly sanitised by the ICAP Patience Page before being returned to the user. The vulnerability affects SGOS versions 4.2, 5.2, and 5.3. SOLUTION: The vendor recommends customizing the settings of the ICAP Patience Page in order to avoid printing the URL. Please see the vendor's advisory for more information. PROVIDED AND/OR DISCOVERED BY: Juan Pablo Lopez Yacubian ORIGINAL ADVISORY: Blue Coat: http://www.bluecoat.com/support/securityadvisories/icap_patience ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.07

sources: NVD: CVE-2008-4485 // JVNDB: JVNDB-2008-003516 // BID: 31543 // VULHUB: VHN-34610 // PACKETSTORM: 70620

AFFECTED PRODUCTS

vendor:bluecoatmodel:security gateway osscope:eqversion:4.2

Trust: 1.6

vendor:bluecoatmodel:security gateway osscope:eqversion:5.3

Trust: 1.6

vendor:bluecoatmodel:security gateway osscope:eqversion:5.2

Trust: 1.6

vendor:blue coatmodel:security gateway osscope:ltversion:5.2

Trust: 0.8

vendor:blue coatmodel:security gateway osscope:ltversion:4.2

Trust: 0.8

vendor:blue coatmodel:security gateway osscope:eqversion:5.3.1.7

Trust: 0.8

vendor:blue coatmodel:security gateway osscope:ltversion:5.3

Trust: 0.8

vendor:blue coatmodel:security gateway osscope:eqversion:5.2.5

Trust: 0.8

vendor:blue coatmodel:security gateway osscope:eqversion:4.2.9

Trust: 0.8

vendor:bluemodel:coat systems webfilterscope:eqversion:5.3

Trust: 0.3

vendor:bluemodel:coat systems webfilterscope:eqversion:5.2

Trust: 0.3

vendor:bluemodel:coat systems webfilterscope:eqversion:4.2

Trust: 0.3

vendor:bluemodel:coat systems webfilterscope:neversion:5.3.1.7

Trust: 0.3

vendor:bluemodel:coat systems webfilterscope:neversion:5.2.5

Trust: 0.3

vendor:bluemodel:coat systems webfilterscope:neversion:4.2.9

Trust: 0.3

sources: BID: 31543 // JVNDB: JVNDB-2008-003516 // CNNVD: CNNVD-200810-111 // NVD: CVE-2008-4485

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2008-4485
value: MEDIUM

Trust: 1.0

NVD: CVE-2008-4485
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-200810-111
value: MEDIUM

Trust: 0.6

VULHUB: VHN-34610
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2008-4485
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-34610
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-34610 // JVNDB: JVNDB-2008-003516 // CNNVD: CNNVD-200810-111 // NVD: CVE-2008-4485

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-34610 // JVNDB: JVNDB-2008-003516 // NVD: CVE-2008-4485

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200810-111

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 70620 // CNNVD: CNNVD-200810-111

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2008-003516

PATCH
title:Top Pageurl:http://www.bluecoat.com/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2008-003516

EXTERNAL IDS
db:NVDid:CVE-2008-4485
Trust: 2.8
db:BIDid:31543
Trust: 2.0
db:SECUNIAid:32122
Trust: 1.8
db:SREASONid:4367
Trust: 1.7
db:VUPENid:ADV-2008-2739
Trust: 1.7
db:SECTRACKid:1020979
Trust: 1.7
db:JVNDBid:JVNDB-2008-003516
Trust: 0.8
db:BUGTRAQid:20080921 BLUE COAT XSS
Trust: 0.6
db:BUGTRAQid:20081002 RE: BLUE COAT XSS
Trust: 0.6
db:XFid:45625
Trust: 0.6
db:CNNVDid:CNNVD-200810-111
Trust: 0.6
db:VULHUBid:VHN-34610
Trust: 0.1
db:PACKETSTORMid:70620
Trust: 0.1
sources:
            
            
            VULHUB: VHN-34610 // 
            
            
            
            BID: 31543 // 
            
            
            
            JVNDB: JVNDB-2008-003516 // 
            
            
            
            PACKETSTORM: 70620 // 
            
            
            
            CNNVD: CNNVD-200810-111 // 
            
            
            
            NVD: CVE-2008-4485

REFERENCES
url:http://www.bluecoat.com/support/securityadvisories/icap_patience
Trust: 1.8
url:http://www.securityfocus.com/bid/31543
Trust: 1.7
url:http://www.securitytracker.com/id?1020979
Trust: 1.7
url:http://secunia.com/advisories/32122
Trust: 1.7
url:http://securityreason.com/securityalert/4367
Trust: 1.7
url:http://marc.info/?l=bugtraq&m=122298544725313&w=2
Trust: 1.6
url:http://marc.info/?l=bugtraq&m=122210321731789&w=2
Trust: 1.6
url:http://www.vupen.com/english/advisories/2008/2739
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/45625
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-4485
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-4485
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/45625
Trust: 0.6
url:http://www.frsirt.com/english/advisories/2008/2739
Trust: 0.6
url:http://www.bluecoat.com
Trust: 0.3
url:http://hypersonic.bluecoat.com/support/securityadvisories/icap_patience
Trust: 0.3
url:/archive/1/496577
Trust: 0.3
url:/archive/1/496940
Trust: 0.3
url:http://marc.info/?l=bugtraq&m=122210321731789&w=2
Trust: 0.1
url:http://marc.info/?l=bugtraq&m=122298544725313&w=2
Trust: 0.1
url:http://secunia.com/binary_analysis/sample_analysis/
Trust: 0.1
url:http://secunia.com/advisories/32122/
Trust: 0.1
url:http://secunia.com/advisories/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/advisories/product/5419/
Trust: 0.1
url:http://secunia.com/advisories/product/12422/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/advisories/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            VULHUB: VHN-34610 // 
            
            
            
            BID: 31543 // 
            
            
            
            JVNDB: JVNDB-2008-003516 // 
            
            
            
            PACKETSTORM: 70620 // 
            
            
            
            CNNVD: CNNVD-200810-111 // 
            
            
            
            NVD: CVE-2008-4485

CREDITS
Juan Pablo Lopez Yacubian
Trust: 0.9
sources:
            
            
            BID: 31543 // 
            
            
            
            CNNVD: CNNVD-200810-111

SOURCES
db:VULHUBid:VHN-34610
db:BIDid:31543
db:JVNDBid:JVNDB-2008-003516
db:PACKETSTORMid:70620
db:CNNVDid:CNNVD-200810-111
db:NVDid:CVE-2008-4485

LAST UPDATE DATE
2025-04-10T22:56:56.520000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-34610date:2017-08-08T00:00:00
db:BIDid:31543date:2015-05-07T17:22:00
db:JVNDBid:JVNDB-2008-003516date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200810-111date:2009-01-29T00:00:00
db:NVDid:CVE-2008-4485date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-34610date:2008-10-08T00:00:00
db:BIDid:31543date:2008-10-02T00:00:00
db:JVNDBid:JVNDB-2008-003516date:2012-06-26T00:00:00
db:PACKETSTORMid:70620date:2008-10-04T18:17:40
db:CNNVDid:CNNVD-200810-111date:2008-10-08T00:00:00
db:NVDid:CVE-2008-4485date:2008-10-08T02:00:01.470