Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:19729
HistoryApr 25, 2008 - 12:00 a.m.

DDIVRT-2008-11 BadBlue uninst.exe DoS

2008-04-2500:00:00
vulners.com
16
JSON

Title

DDIVRT-2008-11 BadBlue uninst.exe DoS

Severity

Medium

Date Discovered

March 5th 2008

Discovered By

Digital Defense, Inc. Vulnerability Research Team
Credit: Steven James and r@b13$

Vulnerability Description

BadBlue is a web server used for peer-to-peer file sharing. By default, several executable files are
stored in the web root: badblue.exe, uninst.exe, and dyndns.exe. Executable files stored in the web
root of BadBlue can be launched remotely by any user. This can be leveraged to create a DoS condition
by repeatedly invoking the uninst.exe executable. Due to the fact that BadBlue has not released a
patch for the previously documented directory traversal vulnerability (CVE 2007-6378), an attacker may
utilize these two flaws in conjunction to place a malicious executable in the web root and compromise
a vulnerable server.

Solution Description

Restrict access to the executables already in the web root (badblue.exe, uninst.exe, and dyndns.exe)
and take steps to ensure that users cannot write files to the web root.

Tested Systems / Software (with versions)

BadBlue Personal Edition version 2.72 has been tested on Windows XP and Windows Server 2003. Other
versions and systems are assumed to be vulnerable.

Vendor Contact

Vendor Name: BadBlue
Vendor Website: www.badblue.com

JSON