CVE-2005-2790

Опубликовано: 02 сент. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC 2.14_B and earlier, relies on the client to enforce permissions and perform actions such as disconnections, which allows remote attackers to bypass administrative restrictions via a modified client.

Ссылки

http://aluigi.altervista.org/adv/bfccown-adv.txt
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=112534155318828&w=2
http://secunia.com/advisories/16629/
Vendor Advisory
http://www.securityfocus.com/bid/14690
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/22057
http://aluigi.altervista.org/adv/bfccown-adv.txt
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=112534155318828&w=2
http://secunia.com/advisories/16629/
Vendor Advisory
http://www.securityfocus.com/bid/14690
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/22057

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:bfcommand_and_control_software:bfcc:*:*:*:*:*:*:*:*

Версия до 1.22_a (включая)

cpe:2.3:a:bfcommand_and_control_software:bfvcc:2.00_a:*:*:*:*:*:*:*

cpe:2.3:a:bfcommand_and_control_software:bfvcc:2.14_b:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00413

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-79w6-fp4g-8fxg

github

почти 4 года назад