The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Vulnerability of ProxySG: privilege escalation via SAML Authentication

Synthesis of the vulnerability

An attacker can bypass restrictions via SAML Authentication of ProxySG, in order to escalate his privileges.
Severity of this threat: 2/4.
Creation date: 28/05/2018.
Références of this weakness: CVE-2018-5241, SA167, SYMSA1450, VIGILANCE-VUL-26252.

Description of the vulnerability

An attacker can bypass restrictions via SAML Authentication of ProxySG, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

This weakness alert impacts software or systems such as ProxySG par Blue Coat, SGOS by Blue Coat, ProxySG by Symantec, SGOS by Symantec.

Our Vigil@nce team determined that the severity of this computer vulnerability note is medium.

The trust level is of type confirmed by the editor, with an origin of intranet server.

An attacker with a expert ability can exploit this security bulletin.

Solutions for this threat

ProxySG: fixed versions for SAML Authentication.
Fixed versions are indicated in information sources.
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides an applications vulnerabilities announce. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.