CVE-2009-0759

N/A Unknown

Published: March 03, 2009 Modified: April 23, 2026

Description

Multiple CRLF injection vulnerabilities in webadmin in ZNC before 0.066 allow remote authenticated users to modify the znc.conf configuration file and gain privileges via CRLF sequences in the quit message and other vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/52295

Source: cve@mitre.org

http://secunia.com/advisories/34230

Source: cve@mitre.org

http://www.debian.org/security/2009/dsa-1735

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2009/03/01/2

Source: cve@mitre.org

http://znc.svn.sourceforge.net/viewvc/znc/trunk/modules/webadmin.cpp?view=log&sortby=rev&sortdir=down&pathrev=1395

Source: cve@mitre.org

Vendor Advisory

http://znc.svn.sourceforge.net/viewvc/znc?view=rev&sortby=rev&sortdir=down&revision=1395

Source: cve@mitre.org

Vendor Advisory

http://znc.svn.sourceforge.net/viewvc/znc?view=rev&sortby=rev&sortdir=down&revision=1396

Source: cve@mitre.org

Vendor Advisory

http://osvdb.org/52295