Vulnerabilities

CVE-2015-2854

by Fred · 30/05/2015

The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not send a restrictive X-Frame-Options HTTP header, which allows remote attackers to conduct clickjacking attacks via vectors involving an IFRAME element.

Date published : 2015-05-30

http://www.securityfocus.com/bid/74921

http://www.kb.cert.org/vuls/id/498348

Related

Tags: Cybersecurity Alert