BadBlue known file source disclosure
| badblue-file-source-disclosure (7021) |  Medium Risk |
Description:
BadBlue could allow a remote attacker to download known files from the server, caused by improper filtering of user-supplied input. A remote attacker can send a URL request appended with "%00" to cause the file requested to be displayed by BadBlue. If the file requested is a .php script, the source code of the script is displayed instead of being executed.
Platforms Affected:
- Working Resources, BadBlue Personal Edition 1.02
Remedy:
Upgrade to the latest version of BadBlue Personal Edition (1.5 or later), when it becomes available from the BadBlue Web site. See References.
Consequences:
Obtain Information
References:
- BadBlue Web site, Download BadBlue Personal Edition (PE) at http://www.badblue.com/down.htm.
- BugTraq Mailing List, Wed Aug 22 2001 - 09:28:49 CDT, iSecureLabs BadBlue v1.02 beta for Windows 98, ME and 2000 Advisory at http://archives.neohapsis.com/archives/bugtraq/2001-08/0314.html.
- BID-3222: BadBlue Source Code Disclosure Vulnerability
- CVE-2001-1140: BadBlue Personal Edition v1.02 beta allows remote attackers to read source code for executable programs by appending a %00 (null byte) to the request.
Reported:
Aug 22, 2001
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net