BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC 2.14_B and earlier, allows remote attackers to bypass authentication via (1) an unknown attack vector or (2) a NULL (0x00) as a username.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bfvcc | Bfcommand_and_control_software | 2.00_a | 2.00_a |
Bfcc | Bfcommand_and_control_software | * | 1.22_a |
Bfvcc | Bfcommand_and_control_software | 2.14_b | 2.14_b |