Backspace Character Vulnerability in BNC Allows Remote Authentication Bypass

Backspace Character Vulnerability in BNC Allows Remote Authentication Bypass

CVE-2004-1482 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts.

Learn more about our Web Application Penetration Testing UK.