The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bnc | Bnc | 2.2.4 (including) | 2.2.4 (including) |
Bnc | Bnc | 2.4.6 (including) | 2.4.6 (including) |
Bnc | Bnc | 2.4.8 (including) | 2.4.8 (including) |
Bnc | Bnc | 2.6 (including) | 2.6 (including) |
Bnc | Bnc | 2.6.2 (including) | 2.6.2 (including) |
Bnc | Bnc | 2.8.8 (including) | 2.8.8 (including) |