CVE-2004-2397

The web-based Management Console in Blue Coat Security Gateway OS 3.0 through 3.1.3.13 and 3.2.1, when importing a private key, stores the key and its passphrase in plaintext in a log file, which allows attackers to steal digital certificates.

Date published : 2005-08-17

http://www.securityfocus.com/bid/10371

http://www.bluecoat.com/support/knowledge/advisory_private_key_compromise.html