SA35 : Blue Coat Director Advisory on Sockstress TCP Attacks

1186

03 March 2020

16 October 2009

CLOSED

LOW

SUMMARY

Director’s TCP/IP stack implementation is vulnerable to an attack that can lead to resource exhaustion.

AFFECTED PRODUCTS

Red Hat has opted to not fix this vulnerability, therefore Blue Coat will not be addressing it either. Please see https://www.redhat.com/security/data/cve/CVE-2008-4609.html for Red Hat's official response to this vulnerability.

ISSUES

A successful attack on a Director will result in a Denial of Service condition where new TCP connections are not accepted. Existing connections will continue to function with reduced responsiveness.

MITIGATION

Blue Coat Director is based on the Linux operating system. No Director update is available at this time as Linux community has not released a patch.