Vulnerability Database

296,663

Total vulnerabilities in the database

CVE-2004-1482

The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts.

Published: Dec 31, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-1482
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
bnc / bnc	2.4.8	2.4.8.x
bnc / bnc	2.6	2.6.x
bnc / bnc	2.8.8	2.8.8.x
bnc / bnc	2.2.4	2.2.4.x
bnc / bnc	2.6.2	2.6.2.x
bnc / bnc	2.4.6	2.4.6.x

http://secunia.com/advisories/12770/
http://www.gentoo.org/security/en/glsa/glsa-200410-13.xml
http://www.gotbnc.com/changes.html#2.8.9
http://www.osvdb.org/10596
http://www.securityfocus.com/bid/11355
https://exchange.xforce.ibmcloud.com/vulnerabilities/17672

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo