CVE-2009-2546
published 2009-07-20CVE-2009-2546: Directory traversal vulnerability in Advanced Electron Forum (AEF) 1.x allows remote attackers to determine the existence of arbitrary files via the…
PriorityP416medium4.3CVSS 2.0
AVNACMAuNCPINAN
EPSS
1.31%
67.1th percentile
Directory traversal vulnerability in Advanced Electron Forum (AEF) 1.x allows remote attackers to determine the existence of arbitrary files via the avatargalfile parameter when changing an avatar, which leaks the existence of the file in an error message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| anelectron | advanced_electron_forum | — | — |
| anelectron | advanced_electron_forum | — | — |
| anelectron | advanced_electron_forum | — | — |
| anelectron | advanced_electron_forum | — | — |
| anelectron | advanced_electron_forum | — | — |
| anelectron | advanced_electron_forum | — | — |
| anelectron | advanced_electron_forum | — | — |
| anelectron | advanced_electron_forum | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gfm5-6996-gv93: Directory traversal vulnerability in Advanced Electron Forum (AEF) 1
ghsa_unreviewed·2022-05-02
CVE-2009-2546 [MEDIUM] CWE-22 GHSA-gfm5-6996-gv93: Directory traversal vulnerability in Advanced Electron Forum (AEF) 1
Directory traversal vulnerability in Advanced Electron Forum (AEF) 1.x allows remote attackers to determine the existence of arbitrary files via the avatargalfile parameter when changing an avatar, which leaks the existence of the file in an error message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Red Hat
libmikmod: arbitrary code execution via crafted Impulse Tracker or Ultratracker files
vendor_redhat·2010-02-05·CVSS 9.3
CVE-2010-2546 [CRITICAL] libmikmod: arbitrary code execution via crafted Impulse Tracker or Ultratracker files
libmikmod: arbitrary code execution via crafted Impulse Tracker or Ultratracker files
Multiple heap-based buffer overflows in loaders/load_it.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via (1) crafted samples or (2) crafted instrument definitions in an Impulse Tracker file, related to panpts, pitpts, and IT_ProcessEnvelope. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2009-3995.
Package: mikmod (Red Hat Enterprise Linux 4) - Affected
Package: mikmod (Red Hat Enterprise Linux 5) - Affected
Red Hat
libmikmod: arbitrary code execution via crafted Impulse Tracker or Ultratracker files
vendor_redhat·2010-02-05·CVSS 9.3
CVE-2010-2971 [CRITICAL] libmikmod: arbitrary code execution via crafted Impulse Tracker or Ultratracker files
libmikmod: arbitrary code execution via crafted Impulse Tracker or Ultratracker files
loaders/load_it.c in libmikmod, possibly 3.1.12, does not properly account for the larger size of name##env relative to name##tick and name##node, which allows remote attackers to trigger a buffer over-read and possibly have unspecified other impact via a crafted Impulse Tracker file, a related issue to CVE-2010-2546. NOTE: this issue exists because of an incomplete fix for CVE-2009-3995.
Package: mikmod (Red Hat Enterprise Linux 4) - Affected
Package: mikmod (Red Hat Enterprise Linux 5) - Affected
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2009-07-20
Published