CVE-2002-1021

BadBlue - Unauthenticated Arbitrary File Read via Hex-Encoded Null Byte

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1021. PoCs published by Matthew Murphy.

AI-analyzed exploit summary This exploit demonstrates an information leakage vulnerability in BadBlue by appending a null byte to a file request, bypassing file extension restrictions to access sensitive files like the configuration file.

Description

BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Matthew Murphy · textremotewindows

https://www.exploit-db.com/exploits/21616

View Code ZIP pw:eip

This exploit demonstrates an information leakage vulnerability in BadBlue by appending a null byte to a file request, bypassing file extension restrictions to access sensitive files like the configuration file.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: BadBlue P2P file sharing application

No auth needed

Prerequisites: Network access to a BadBlue server

MITRE ATT&CK

T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/9557.php

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5226

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2002-07/0143.html

Scores

EPSS 0.0322

EPSS Percentile 86.6%

Details

Status published

Products (2)

working_resources_inc./badblue 1.7.3_enterprise

working_resources_inc./badblue 1.7.3_personal

Published Oct 04, 2002

Tracked Since Feb 18, 2026