Authentication Bypass in BFCommand & Control Server Manager BFCC and BFVCC

Authentication Bypass in BFCommand & Control Server Manager BFCC and BFVCC

CVE-2005-2789 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC 2.14_B and earlier, allows remote attackers to bypass authentication via (1) an unknown attack vector or (2) a NULL (0x00) as a username.

Learn more about our Cis Benchmark Audit For Server Software.