Working Resources Inc.: >> Badblue >> 1.7.3_enterprise Security Vulnerabilities
BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte.
CVSS Score
5.0
EPSS Score
0.034
Published
2002-10-04
BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges.
CVSS Score
7.5
EPSS Score
0.009
Published
2002-10-04
BadBlue server allows remote attackers to cause a denial of service (crash) via an HTTP GET request without a URI.
CVSS Score
5.0
EPSS Score
0.049
Published
2002-10-04