VULHUB ™

Blue Coat Systems are the maintainers of the former Cacheflow web cache and security products. It has been discovered that the error pages of older Cacheflow systems firmware may allow the display of certain characters used in HTML tags. By visiting a custom-crafted URI supplied by an attacker, inclusion of these special characters could result in the execution of arbitrary script code by a visiting client. Any code executed on the client would be in the security context of the local user, and the security zone of the Cacheflow device.

Blue Coat Systems are the maintainers of the former Cacheflow web cache and security products. It has been discovered that the error pages of older Cacheflow systems firmware may allow the display of certain characters used in HTML tags. By visiting a custom-crafted URI supplied by an attacker, inclusion of these special characters could result in the execution of arbitrary script code by a visiting client. Any code executed on the client would be in the security context of the local user, and the security zone of the Cacheflow device.