2005-12-04 11:00:00
mitre
PUBLISHED
BNC 2.9.0 only grants access when an incorrect password is provided, which allows remote attackers to use the functionality intended for authorized users.