BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC 2.14_B and earlier, allows remote attackers to bypass authentication via (1) an unknown attack vector or (2) a NULL (0x00) as a username.
Software | From | Fixed in |
---|---|---|
bfcommand_and_control_software / bfvcc | 2.00_a | 2.00_a.x |
bfcommand_and_control_software / bfvcc | 2.14_b | 2.14_b.x |
bfcommand_and_control_software / bfcc | - | 1.22_a.x |