CNNVD-202508-3662 Information

Aug 30, 2025 cve

CNNVD ID

CNNVD-202508-3662

CVE-2009-20011

  • CNNVD Published: 2025-08-30

Description (Chinese)

ContentKeeper Web Appliance是澳大利亚ContentKeeper公司的一个网络内容过滤与安全网关设备。 ContentKeeper Web Appliance 125.10之前版本存在安全漏洞,该漏洞源于mimencode CGI工具对文件上传处理不当,可能导致远程命令执行和权限提升。

Description (English)

ContentKeeper Web Application is a network content filter and safety gateway for the Australian company ContentKeeper. There was a security loophole in the previous version of ContentKeeper Web Application 125.10, which resulted from the inappropriate handling of document uploads by the mimencode CGI tool, which could lead to remote command execution and enhanced privileges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Continuous

Published

2025-08-30

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/contentkeeper-web-appliance-rce-via-mimencode https://www.ativion.com/contentkeeper/ http://www.contentkeeper.com/ https://web.archive.org/web/20081220084819/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/ http://www.aushack.com/200904-contentkeeper.txt https://access.redhat.com/security/cve/cve-2009-20011 https://nvd.nist.gov/vuln/detail/CVE-2009-20011

Share on: