BNBForm Automessage File Retrieval Vulnerability

Bugtraq ID:	2147
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	Yes
Published:	Dec 03 1998 12:00AM
Updated:	Dec 03 1998 12:00AM
Credit:	duke <[email protected]> is credited with discovery.
Vulnerable:	Big Nose Bird BNBForm 3.0 Big Nose Bird BNBForm 2.0 Big Nose Bird BNBForm 1.0
Not Vulnerable:	Big Nose Bird BNBForm 4.0

BNBForm Automessage File Retrieval Vulnerability

Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].

BNBForm Automessage File Retrieval Vulnerability

Solution:
Upgrade to version 4.0 of the script available from BigNoseBird.com - See credit.