SA35 : Blue Coat Director Advisory on Sockstress TCP Attacks
1186
03 March 2020
16 October 2009
CLOSED
LOW
SUMMARY
Director’s TCP/IP stack implementation is vulnerable to an attack that can lead to resource exhaustion.
AFFECTED PRODUCTS
Red Hat has opted to not fix this vulnerability, therefore Blue Coat will not be addressing it either. Please see https://www.redhat.com/security/data/cve/CVE-2008-4609.html for Red Hat's official response to this vulnerability.
ISSUES
A successful attack on a Director will result in a Denial of Service condition where new TCP connections are not accepted. Existing connections will continue to function with reduced responsiveness.
MITIGATION
Blue Coat Director is based on the Linux operating system. No Director update is available at this time as Linux community has not released a patch.