CVE-2009-2658
Directory traversal vulnerability in ZNC before 0.072 allows remote attackers to overwrite arbitrary files via a crafted DCC SEND request.
| Software | From | Fixed in |
|---|---|---|
| znc / znc | 0.044 | 0.044.x |
| znc / znc | 0.062 | 0.062.x |
| znc / znc | 0.045 | 0.045.x |
| znc / znc | 0.052 | 0.052.x |
| znc / znc | 0.058 | 0.058.x |
| znc / znc | 0.056 | 0.056.x |
| znc / znc | 0.070 | 0.070.x |
| znc / znc | 0.064 | 0.064.x |
| znc / znc | 0.068 | 0.068.x |
| znc / znc | 0.054 | 0.054.x |
| znc / znc | 0.060 | 0.060.x |
| znc / znc | 0.047 | 0.047.x |
| znc / znc | 0.066 | 0.066.x |
- http://en.znc.in/w/index.php?title=ZNC&oldid=3209#WARNING
- http://en.znc.in/wiki/ChangeLog/0.072
- http://secunia.com/advisories/35916
- http://www.debian.org/security/2009/dsa-1848
- http://www.openwall.com/lists/oss-security/2009/07/21/5
- http://znc.svn.sourceforge.net/viewvc/znc?view=rev&sortby=rev&sortdir=down&revision=1570
- https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00965.html
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime