Working Resources BadBlue Unauthorized Proxy Relay Vulnerability

info
discussion
exploit
solution
references

Working Resources BadBlue Unauthorized Proxy Relay Vulnerability

This issue can be exploited with a Web browser.

The following proof of concept is available:
http://www.example.com/ext.dll?mfcisapicommand=PassThru&url=[Any IP:Any Port]/[Any Command]