fkie_nvd - fkie_cve-2010-5192

fkie_cve-2010-5192

Vulnerability from fkie_nvd

Published

2012-08-26 19:55

Modified

2025-04-11 00:51

Severity ?

Summary

Cross-site scripting (XSS) vulnerability in the Java Management Console in Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

▶	URL	Tags
	cve@mitre.org	http://secunia.com/advisories/41695
	cve@mitre.org	http://securitytracker.com/id?1024503
	cve@mitre.org	http://www.osvdb.org/68322
	cve@mitre.org	http://www.securityfocus.com/bid/43675
	cve@mitre.org	http://www.vupen.com/english/advisories/2010/2562
	cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/62240
	cve@mitre.org	https://kb.bluecoat.com/index?page=content&id=SA47
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/41695
	af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1024503
	af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/68322
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/43675
	af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2010/2562
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/62240
	af854a3a-2127-422b-91ae-364da2661108	https://kb.bluecoat.com/index?page=content&id=SA47

Impacted products

Vendor	Product	Version
bluecoat	sgos	*
bluecoat	sgos	3.2.6
bluecoat	sgos	4.1.2.1
bluecoat	sgos	4.2.1.2
bluecoat	sgos	4.2.1.6
bluecoat	sgos	4.2.2
bluecoat	sgos	4.2.2.1
bluecoat	sgos	4.2.2.2
bluecoat	sgos	4.2.3
bluecoat	sgos	4.2.3.4
bluecoat	sgos	4.2.3.7
bluecoat	sgos	4.2.3.12
bluecoat	sgos	4.2.3.21
bluecoat	sgos	4.2.3.26
bluecoat	sgos	4.2.4.1
bluecoat	sgos	4.2.5
bluecoat	sgos	4.2.5.1
bluecoat	sgos	4.2.6
bluecoat	sgos	4.2.6.1
bluecoat	sgos	4.2.6.4
bluecoat	sgos	4.2.7.1
bluecoat	sgos	5.2.2.4
bluecoat	sgos	5.4.5
bluecoat	sgos	5.5.4
bluecoat	sgos	6.1.2
bluecoat	proxysg	*
bluecoat	proxysg_sg210-10	-
bluecoat	proxysg_sg210-10	-
bluecoat	proxysg_sg210-25	-
bluecoat	proxysg_sg210-25	-
bluecoat	proxysg_sg210-5	-
bluecoat	proxysg_sg210-5	-
bluecoat	proxysg_sg510-10	-
bluecoat	proxysg_sg510-10	-
bluecoat	proxysg_sg510-20	-
bluecoat	proxysg_sg510-20	-
bluecoat	proxysg_sg510-25	-
bluecoat	proxysg_sg510-25	-
bluecoat	proxysg_sg510-5	-
bluecoat	proxysg_sg810-10	-
bluecoat	proxysg_sg810-10	-
bluecoat	proxysg_sg810-20	-
bluecoat	proxysg_sg810-20	-
bluecoat	proxysg_sg810-25	-
bluecoat	proxysg_sg810-25	-
bluecoat	proxysg_sg810-5	-
bluecoat	proxysg_sg9000-10	-
bluecoat	proxysg_sg9000-10	-
bluecoat	proxysg_sg9000-20	-
bluecoat	proxysg_sg9000-20	-
bluecoat	proxysg_sg9000-5	-
bluecoat	proxysg_sg9000-5	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DB7D946-27DD-481F-A1F7-BE9033289A87",
              "versionEndIncluding": "4.3.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:3.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "4001EB20-16A9-4422-9289-32DE8C4D430B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.1.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "84A2D437-2963-41DD-A78C-5E2D0DF34839",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "02483E00-B6C5-4E76-A70F-D4CECEBAD244",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "E73538F5-EDE1-4284-8392-D54AFB4A5C10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EB5289F-1426-49F0-AB56-C989CE927ED9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "07209888-671C-4066-B273-356C66E67FE3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "B08C7966-7D0C-4FE1-9EAA-CAEC0E009ECF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B82C387E-3C10-45F5-B2C9-7D42047713DF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "150AC531-E9CD-47C1-A7D8-0828FE5C38A8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.3.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "92820ABA-8B10-430D-A679-6065221D1924",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.3.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "951FB4B7-7357-423E-AE25-F3672893225E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.3.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "C7EEE283-7AF2-459C-8D39-0B0BFBA87B55",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.3.26:*:*:*:*:*:*:*",
              "matchCriteriaId": "0EAAEB8A-9409-46B9-ABAC-CB9898C0EF86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "14D59E6E-063B-4AB9-AE81-A53D907B6680",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "C534E59B-7259-4F53-99DF-0B754ECAEA30",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6BABE70A-CD55-4124-A5D3-B779B92BA6CD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "155ECB82-3ECA-451B-925A-74AEE73E0C21",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8A90DE11-0F9B-474E-9A58-F1C4C042FD5B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.6.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "FDF5C19B-2C2D-417B-B53E-B0E581A8EA7D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:4.2.7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F0207F6-982D-430A-8146-790564828F3B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:5.2.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "874038D8-CB9F-436D-8DD1-821273FB79E9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:5.4.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "29912AF6-1203-4A93-B134-2320BD52FEE1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:5.5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "F82B502B-48C9-44DB-9350-E5F6170B9E8E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:bluecoat:sgos:6.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "B206C686-E41D-4E73-80B2-99467AEC8721",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B6CFEC9-0F8F-4CD4-ABD1-E6533F910F7F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg210-10:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "9E11536F-7CFA-41C8-9826-945B6D3606A9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg210-10:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "C162E145-9C08-4763-A5E4-0D383B18380A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg210-25:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "3E2D3EE0-8C28-4338-BB55-3942868AEBD5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg210-25:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "2A8518E8-575C-42E4-844E-479448E0358A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg210-5:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "650EF456-4DF5-42B4-BEC5-76F351461DAD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg210-5:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "41104737-2E55-47DE-B29F-F88B07956601",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg510-10:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "64AC1648-94E7-4C2F-8D28-906DD3C9E9C9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg510-10:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "B3ABD5B1-3CD8-4361-9933-A99C5BCAEC53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg510-20:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "A63F6BE1-3705-41F8-83F2-14262C1A8513",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg510-20:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "33C50C6D-42FD-47E2-811D-69673144601B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg510-25:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "6F61A3FE-A7A2-42B8-BE15-A5904F68C2EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg510-25:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "053096B7-C691-430B-8EAF-FF8DF0ED3626",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg510-5:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "3CC9C212-03B8-4D1D-8E66-1CAE9066D3A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg810-10:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "844E3782-018D-4CBB-B4E1-B60D713851D3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg810-10:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "3711A175-0F97-4B8D-991B-EE05C6927D35",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg810-20:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "25BA7C9D-3E26-4F1B-9C8A-DF864D3F8F91",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg810-20:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "DFC4B7BB-804A-4628-9829-369A37BB7C33",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg810-25:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "147F05C5-8148-4448-9A27-6A8093E4D501",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg810-25:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "DB590391-1E89-4585-95B7-C77C3FA127C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg810-5:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "066A03FA-CEDF-4C8A-A445-521C9E6E954E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg9000-10:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "E9858A0D-3368-407A-8438-14EB8BA0F096",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg9000-10:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "EAF352C1-3CA1-4CE4-9067-9819BA327F6F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg9000-20:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "A3EB21AA-B393-42F6-8945-E8EF1EF81C1C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg9000-20:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "A2A29D44-8A16-4F5A-9907-85D1F0EC13CC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg9000-5:-:-:acceleration:*:*:*:*:*",
              "matchCriteriaId": "2EDF8810-4C81-49E8-B4AA-2B87B5D6C953",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:bluecoat:proxysg_sg9000-5:-:-:full_proxy:*:*:*:*:*",
              "matchCriteriaId": "A5259AF1-EBB5-4083-BF78-2DB7C075E298",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in the Java Management Console in Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de ejecuci\u00f3n de comandos en sitios cruzados (XSS) en Java Management Console en Blue Coat ProxySG anterior a SGOS v4.3.4.1, v5.x anterior a SGOS v5.4.5.1, v5.5 anterior a SGOS v5.5.4.1, y v6.x anterior a  SGOS v6.1.1.1 permite a atacantes remotos inyectar c\u00f3digo web o HTML arbitrario a trav\u00e9s de vectores no especificados."
    }
  ],
  "id": "CVE-2010-5192",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2012-08-26T19:55:01.747",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/41695"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1024503"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/68322"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/43675"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2010/2562"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/62240"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://kb.bluecoat.com/index?page=content\u0026id=SA47"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/41695"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1024503"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/68322"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/43675"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/2562"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/62240"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://kb.bluecoat.com/index?page=content\u0026id=SA47"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2010-5192 (GCVE-0-2010-5192)

Vulnerability from cvelistv5

Published

2012-08-26 19:00