Unrated severityNVD Advisory· Published May 5, 2009· Updated Jun 16, 2026
CVE-2009-1526
CVE-2009-1526
Description
JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:directadmin:directadmin:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:directadmin:directadmin:*:*:*:*:*:*:*:*range: <1.33.4
- (no CPE)range: <1.334
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/34861nvdVendor Advisory
- www.directadmin.com/features.phpnvdRelease NotesVendor Advisory
- archives.neohapsis.com/archives/fulldisclosure/2009-04/0228.htmlnvdBroken Link
- osvdb.org/54014nvdBroken Link
News mentions
0No linked articles in our index yet.