Working Resources BadBlue 1.7.x/2.x – Unauthorized Proxy Relay

16次阅读
没有评论

Working Resources BadBlue 1.7.x/2.x – Unauthorized Proxy Relay

漏洞ID 1053657 漏洞类型
发布时间 2002-12-11 更新时间 2002-12-11
Working Resources BadBlue 1.7.x/2.x - Unauthorized Proxy RelayCVE编号 N/A
Working Resources BadBlue 1.7.x/2.x - Unauthorized Proxy RelayCNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/24409
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/11030/info

BadBlue is prone to a vulnerability that may let the application be abused as a proxy. This vulnerability presents itself due to the 'Pass Thru' function allowing the server to be used as a proxy. This could be exploited by malicious parties to obfuscate their identities and bypass network access controls and firewalls.

BadBlue Personal Edition versions 2.5 and prior are reportedly affected by this issue. 

http://www.example.com/ext.dll?mfcisapicommand=PassThru&url=[Any IP:Any Port]/[Any Command]

相关推荐: University of Washington Pico File Overwrite Vulnerability

University of Washington Pico File Overwrite Vulnerability 漏洞ID 1103666 漏洞类型 Race Condition Error 发布时间 2000-12-11 更新时间 2000-12-11 …

正文完
 0