CVE-2016-9091

Summary

Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges.

Affected Software

VendorProductVersion RangeStatus
Symantec CorporationBlue Coat ASG6.6 prior to 6.6.5.4affected
Symantec CorporationBlue Coat CAS1.3 prior to 1.3.7.4affected

Weaknesses

  • OS command injection

ADP Enrichment

CVE Program Container

Additional References

References