Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
BadBlue 2.72 Personal Edition stores multiple programs in the web document root with insufficient access control, which allows remote attackers to (1) cause a denial of service via multiple invocations of uninst.exe, and have an unknown impact via (2) badblue.exe and (3) dyndns.exe. NOTE: this can be leveraged for arbitrary remote code execution in conjunction with CVE-2007-6378.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
badblue 权限许可和访问控制漏洞
Vulnerability Description
BadBlue 2.72 个人版在网络文件根中储存多个程序,却没有设有严格的访问控制。远程攻击者(1) 通过uninst.exe的多个更新来造成拒绝服务并通过(2) badblue.exe 和 (3) dyndns.exe具有未明影响。
CVSS Information
N/A
Vulnerability Type
N/A