CVE-2005-2789

Name of the Vulnerable Software and Affected Versions BFCommand & Control Server Manager BFCC versions 1.22 A and earlier BFCommand & Control Server Manager BFVCC versions 2.14 B and earlier

Description The issue allows remote attackers to bypass authentication. This can be achieved via an unknown attack vector or by using a NULL (0x00) as a username.

Recommendations For BFCC versions 1.22 A and earlier, update to a version later than 1.22 A to resolve the issue. For BFVCC versions 2.14 B and earlier, update to a version later than 2.14 B to resolve the issue. As a temporary workaround, consider restricting access to the authentication mechanism until a patch is available.