Blue Coat Systems Information for VU#457759

glibc vulnerable to stack buffer overflow in DNS resolver

Status

Affected

Vendor Statement

"Blue Coat products using an affected version of the GNU C Library (glibc) are susceptible to a remote execution attack. A remote attacker can send a crafted DNS response to the glibc DNS resolver and cause the resolver to crash or execute arbitrary code."

Vendor Information

Fixes for the vulnerable products are pending. Please see the advisory below.

Vendor References

https://bto.bluecoat.com/security-advisory/sa114

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.