Vulnerabilities > CVE-2007-6379 - Configuration vulnerability in Badblue

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

badblue

CWE-16

exploit available

NVD

Published: 2007-12-15

Updated: 2024-11-21

Summary

BadBlue 2.72b and earlier allows remote attackers to obtain sensitive information via an invalid browse parameter, which reveals the installation path in an error message.

Vulnerable Configurations

Part	Description	Count
Application	Badblue Badblue Badblue *	1

Common Weakness Enumeration (CWE)

CWE-16 - Configuration

Exploit-Db

description	BadBlue. CVE-2007-6377,CVE-2007-6378,CVE-2007-6379. Remote exploit for windows platform
id	EDB-ID:4715
last seen	2016-01-31
modified	2007-12-10
published	2007-12-10
reporter	Luigi Auriemma
source	https://www.exploit-db.com/download/4715/
title	badblue <= 2.72b - Multiple Vulnerabilities

Packetstorm

data source	https://packetstormsecurity.com/files/download/62071/badblue-overflow.txt
id	PACKETSTORM:62071
last seen	2016-12-05
published	2007-12-25
reporter	acaro
source	https://packetstormsecurity.com/files/62071/badblue-overflow.txt.html
title	badblue-overflow.txt

Seebug

bulletinFamily	exploit
description	No description provided by source.
id	SSV:7705
last seen	2017-11-19
modified	2007-12-25
published	2007-12-25
reporter	Root
source	https://www.seebug.org/vuldb/ssvid-7705
title	BadBlue 2.72 PassThru Remote Buffer Overflow Exploit

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

Packetstorm

Seebug

References