This script is Copyright (C) 2003-2016 Tenable Network Security, Inc.
The web server is affected by an authentication bypass vulnerability.
The remote host is running BadBlue web server earlier then 2.3. Such
versions are reportedly affected by an authentication bypass
vulnerability. A flaw in the order that security checks are performed
could allow an attacker to gain administrative access to the
See also :
Upgrade to BadBlue v 2.3 or newer as this reportedly fixes the issue.
Risk factor :
High / CVSS Base Score : 7.6
Family: Web Servers
Nessus Plugin ID: 11641 (badblue_remote_administrative_access2.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now