Unrated severityNVD Advisory· Published Aug 4, 2009· Updated Apr 23, 2026
CVE-2009-2658
CVE-2009-2658
Description
Directory traversal vulnerability in ZNC before 0.072 allows remote attackers to overwrite arbitrary files via a crafted DCC SEND request.
Affected products
13cpe:2.3:a:znc:znc:0.062:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:znc:znc:0.062:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.064:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.066:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.068:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.070:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.044:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.045:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.047:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.052:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.054:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.056:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.058:*:*:*:*:*:*:*
- cpe:2.3:a:znc:znc:0.060:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- en.znc.in/wiki/ChangeLog/0.072nvdPatchVendor Advisory
- secunia.com/advisories/35916nvdVendor Advisory
- en.znc.in/w/index.phpnvd
- www.debian.org/security/2009/dsa-1848nvd
- www.openwall.com/lists/oss-security/2009/07/21/5nvd
- znc.svn.sourceforge.net/viewvc/zncnvd
- www.redhat.com/archives/fedora-package-announce/2009-July/msg00965.htmlnvd
News mentions
0No linked articles in our index yet.