CNNVD-202508-3664 Information

Aug 30, 2025 cve

CNNVD ID

CNNVD-202508-3664

CVE-2009-20009

  • CNNVD Published: 2025-08-30

Description (Chinese)

Belkin Bulldog Plus是加拿大Belkin公司的一款不间断电源管理软件。 Belkin Bulldog Plus 4.0.2 build 1219版本存在安全漏洞,该漏洞源于Web服务认证处理程序对Authorization标头验证不足,可能导致栈缓冲区溢出和远程代码执行。

Description (English)

Belkin Bulldog Plus is an uninterruptible power supply management software from Belkin Canada. Belkin Bulldog Plus, version 4.2 built 1219, has a security loophole, which stems from the inadequate validation of the Authorization Heads by the Web Service Accreditation Process, which may lead to spills over the fence and remote code implementation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

贝尔金

Published

2025-08-30

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/belkin-bulldog-plus-web-service-buffer-overflow https://www.fortiguard.com/encyclopedia/ips/17325/belkin-bulldog-plus-web-services-buffer-overflow https://www.exploit-db.com/exploits/8173 https://s3.belkin.com/support/dl/bulldogwindows.pdf https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ https://nvd.nist.gov/vuln/detail/CVE-2009-20009 https://access.redhat.com/security/cve/cve-2009-20009

Share on: