CVE-2009-1211
First published: Wed Apr 01 2009(Updated: )
Blue Coat ProxySG, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a crafted web page that causes a client to send HTTP requests with a modified Host header.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Blue Coat ProxySG SG9000-5 | ||
| Blue Coat ProxySG SG9000-20 | ||
| Blue Coat ProxySG | ||
| Blue Coat ProxySG SG210-10 | ||
| Blue Coat ProxySG SG510-10 | ||
| Bluecoat ProxySG | ||
| Bluecoat ProxySG | ||
| Blue Coat ProxySG SG210-10 | ||
| Blue Coat ProxySG SG210-5 | ||
| Bluecoat ProxySG | ||
| Blue Coat ProxySG SG510-10 | ||
| Blue Coat ProxySG SG810-20 | ||
| Blue Coat ProxySG SG810-5 | ||
| Blue Coat ProxySG SG810-25 | ||
| Bluecoat ProxySG | ||
| Blue Coat ProxySG SG9000-20 | ||
| Blue Coat ProxySG SG510-5 | ||
| Blue Coat ProxySG SG9000-5 | ||
| Blue Coat ProxySG SG510-20 | ||
| Blue Coat ProxySG SG810-25 | ||
| Blue Coat ProxySG SG510-20 | ||
| Blue Coat ProxySG SG210-5 | ||
| Bluecoat ProxySG | ||
| Bluecoat ProxySG | ||
| Blue Coat ProxySG SG810-20 | ||
| Bluecoat ProxySG | ||
| Blue Coat ProxySG SG9000-10 | ||
| Blue Coat ProxySG | ||
| Bluecoat ProxySG | ||
| Blue Coat ProxySG | ||
| Blue Coat ProxySG SG9000-10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-1211?
CVE-2009-1211 has a medium severity rating, mainly due to its potential for unauthorized access.
How do I fix CVE-2009-1211?
To fix CVE-2009-1211, you should disable transparent interception mode on affected Blue Coat ProxySG devices.
What versions of Blue Coat ProxySG are affected by CVE-2009-1211?
CVE-2009-1211 affects multiple versions, including ProxySG VA-5, VA-10, VA-15, VA-20, SG210, SG510, SG810, and SG9000 series devices.
What kind of attacks can exploit CVE-2009-1211?
CVE-2009-1211 can be exploited to bypass access controls for technologies like Flash, Java, and Silverlight.
Is CVE-2009-1211 still relevant today?
While CVE-2009-1211 was identified over a decade ago, it may still pose risks for organizations using outdated configurations of affected devices.
- agent/references
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/bluecoat
- canonical/blue coat proxysg sg9000-5
- canonical/blue coat proxysg sg9000-20
- canonical/blue coat proxysg
- canonical/blue coat proxysg sg210-10
- canonical/blue coat proxysg sg510-10
- canonical/bluecoat proxysg
- canonical/blue coat proxysg sg210-5
- canonical/blue coat proxysg sg810-20
- canonical/blue coat proxysg sg810-5
- canonical/blue coat proxysg sg810-25
- canonical/blue coat proxysg sg510-5
- canonical/blue coat proxysg sg510-20
- canonical/blue coat proxysg sg9000-10