BadBlue Hex-encoded Null Byte Request Arbitrary File Access
Medium Nessus Plugin ID 11064
SynopsisThe remote web server is affected by an information disclosure vulnerability.
DescriptionThe remote host is running the BadBlue web server. It was possible to read the contents of 'EXT.ini', the BadBlue configuration file, by sending a specially crafted GET request.
SolutionThere is no known solution at this time.