What is CVE-2011-5124?

CVE-2011-5124 is a vulnerability in Bluecoat Proxyone, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2012-08-26.

Is CVE-2011-5124 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Bluecoat Proxyone

CVE-2011-5124

Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packet to the synchronization port (16102/tcp…

Vulnerability class: Buffer Overflow

EPSS: 0.702 (98.7th percentile) — read the EPSS interpretation.

Affected products

Bluecoat Proxyone
Bluecoat Proxysg — versions 4.2.6, 4.3.2.3, 5.1
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

rapid7/metasploit-framework

References

cve@mitre.org (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2011-5124?: CVE-2011-5124 is a vulnerability in Bluecoat Proxyone, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2012-08-26.
Is CVE-2011-5124 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.