CNNVD-202508-3665 Information

CNNVD ID

CNNVD-202508-3665

Related CVE

CVE-2009-20008

• CNNVD Published: 2025-08-30

Description (Chinese)

Green Dam Youth Escort是中国绿坝（Green Dam）公司的一个过滤软件。 Green Dam Youth Escort 3.17版本存在安全漏洞，该漏洞源于URL过滤组件对输入长度验证不足，可能导致栈缓冲区溢出和任意代码执行。

Description (English)

Green Dam Youth Escort is a filter for Green Dam. Release 3.17 of Green Dam Youth Escort has a security loophole, which stems from the inadequate verification of input lengths by the URL filter component, which may lead to spills and arbitrary code implementation of the fence.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

绿坝

Published

2025-08-30

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/green-dam-url-processing-buffer-overflow https://www.exploit-db.com/exploits/8969 https://www.exploit-db.com/exploits/8938 http://www.cse.umich.edu/~jhalderm/pub/gd/ https://web.archive.org/web/20110426190759/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/browser/greendam_url.rb https://en.wikipedia.org/wiki/Green_Dam_Youth_Escort https://nvd.nist.gov/vuln/detail/CVE-2009-20008 https://access.redhat.com/security/cve/cve-2009-20008