CNNVD-202508-2528 Information

Aug 20, 2025 cve

CNNVD ID

CNNVD-202508-2528

CVE-2009-10005

  • CNNVD Published: 2025-08-20

Description (Chinese)

ContentKeeper Web Appliance是澳大利亚ContentKeeper公司的一个网络内容过滤与安全网关设备。 ContentKeeper Web Appliance 125.10之前版本存在安全漏洞,该漏洞源于CGI端点暴露mimencode二进制文件,可能导致未经验证的攻击者从文件系统检索任意文件。

Description (English)

ContentKeeper Web Application is a network content filter and safety gateway for the Australian company ContentKeeper. There was a security loophole in the previous version of ContentKeeper Web Application 125.10, which originated from CGI endpoint exposure of mimencode binary files, which could lead to uncertified assailants retrieving random files from the file system.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Continuous

Published

2025-08-20

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/contentkeeper-web-appliance-arbitrary-file-access-via-mimencode https://www.exploit-db.com/exploits/16923 http://www.contentkeeper.com/ https://web.archive.org/web/20100325220542/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/admin/ http://www.aushack.com/200904-contentkeeper.txt https://nvd.nist.gov/vuln/detail/CVE-2009-10005

Share on: