Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2009-3902

Published: 06/11/2009 Updated: 14/02/2024
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Cherokee Httpd

Vulnerability Summary

Directory traversal vulnerability in Cherokee Web Server 0.5.4 and previous versions for Windows allows remote malicious users to read arbitrary files via a /\.. (slash backslash dot dot) in the URL.

Vulnerable Product Search on Vulmon Subscribe to Product

cherokee cherokee_httpd 0.5.4

Exploits

Exploit DB: Cherokee 0.5.4 - Directory Traversal
############################################################ # # Cherokee Web Server <= 054 Directory Traversal Exploit # Found By: Dr_IDE # Tested On: Windows XPSP3 # Download: wwwcherokee-projectcom/download/windows # ############################################################ - Description - Cherokee Web Server <= 054 is a Windows ...

References

CWE-22http://secunia.com/advisories/37183http://www.vupen.com/english/advisories/2009/3091http://freetexthost.com/ncyss3pllihttp://pocoftheday.blogspot.com/2009/10/cherokee-web-server-054-directory.htmlhttp://www.securityfocus.com/bid/36874http://osvdb.org/59588https://exchange.xforce.ibmcloud.com/vulnerabilities/54024https://nvd.nist.govhttps://www.exploit-db.com/exploits/9873/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook