CVE-2013-5959
Last modified
CVE-2013-5959 is a vulnerability of currently unknown severity. Blue Coat ProxySG before 6.2.14.1, 6.3.x, 6.4.x, and 6.5 before 6.5.2 allows remote attackers to cause a denial of service (memory consumption and dropped connections) via a recursive href in an HTML page, which triggers a large number of HTTP RW pipeline pre-fetch requests.. EPSS estimates a 1.55% chance of exploitation in the next 30 days.
Description
Blue Coat ProxySG before 6.2.14.1, 6.3.x, 6.4.x, and 6.5 before 6.5.2 allows remote attackers to cause a denial of service (memory consumption and dropped connections) via a recursive href in an HTML page, which triggers a large number of HTTP RW pipeline pre-fetch requests.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Bluecoat | Proxysgos | 5.4 |
| Bluecoat | Proxysg | <= 5.3 |
| Bluecoat | Proxysgos | 5.3 |
| Bluecoat | Proxysgos | 5.5 |
| Bluecoat | Proxysgos | 6.1 |
| Bluecoat | Proxysgos | 6.2 |
| Bluecoat | Proxysgos | 6.3 |
| Bluecoat | Proxysgos | 6.4 |
| Bluecoat | Proxysgos | 6.5 |
References
- http://secunia.com/advisories/54991Vendor Advisory
- https://kb.bluecoat.com/index?page=content&id=SA75Vendor Advisory
- http://secunia.com/advisories/54991Vendor Advisory
- https://kb.bluecoat.com/index?page=content&id=SA75Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-5959?
How severe is CVE-2013-5959?
How do I fix CVE-2013-5959?
Are you affected by CVE-2013-5959?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST