working resources inc. badblue 1.7.3 personal vulnerabilities and exploits

(subscribe to this query)

BadBlue server allows remote malicious users to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte.

Working Resources Inc. Badblue 1.7.3 Personal Working Resources Inc. Badblue 1.7.3 Enterprise

1 EDB exploit

BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote malicious users to gain privileges.

Working Resources Inc. Badblue 1.7.3 Personal Working Resources Inc. Badblue 1.7.3 Enterprise

BadBlue server allows remote malicious users to cause a denial of service (crash) via an HTTP GET request without a URI.

Working Resources Inc. Badblue 1.7.3 Personal Working Resources Inc. Badblue 1.7.3 Enterprise

1 EDB exploit

Cross-site scripting (XSS) vulnerability in BadBlue Personal Edition 1.7.3 allows remote malicious users to execute arbitrary script as other users by injecting script into the cleanSearchString() function.

Working Resources Inc. Badblue Personal 1.7.3

1 EDB exploit

Buffer overflow in CHttpServer::OnParseError in the ISAPI extension (Isapi.cpp) when built using Microsoft Foundation Class (MFC) static libraries in Visual C++ 5.0, and 6.0 before SP3, as used in multiple products including BadBlue, allows remote malicious users to cause a denia...

Working Resources Inc. Badblue Personal 1.7.3 Microsoft Foundation Class Library 7.0

1 EDB exploit

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook