BadBlue < 2.3 ISAPI Extension Administrative Actions Bypass
High Nessus Network Monitor Plugin ID 1500
SynopsisThe remote host is running the BadBlue web server.
DescriptionThe remote host is running the BadBlue web server. There is a flaw in the version used that may allow attackers to gain administrative privileges on this host without having to log in.
SolutionUpgrade to BadBlue 2.3 or higher.