CVE-2009-0244

EPSS 17.36% · P95 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0244

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Directory traversal vulnerability in the OBEX FTP Service in the Microsoft Bluetooth stack in Windows Mobile 6 Professional, and probably Windows Mobile 5.0 for Pocket PC and 5.0 for Pocket PC Phone Edition, allows remote authenticated users to list arbitrary directories, and create or read arbitrary files, via a .. (dot dot) in a pathname. NOTE: this can be leveraged for code execution by writing to a Startup folder.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft Windows Mobile OBEX FTP服务目录遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Windows Mobile是微软开发的用于手机等移动设备的操作系统。大多数Windows Mobile操作系统都捆绑的Microsoft蓝牙栈，OBEX FTP是蓝牙栈中最常见的服务。可使用OBEX FTP蓝牙服务通过蓝牙共享文件。通常该服务配置为仅共享特定的目录，用户可在该目录放置所有希望共享的文件。默认的目录为My Device\My Documents\Bluetooth Share。 OBEX FTP服务中存在目录遍历漏洞，通过认证的远程攻击者可以使用ObexFTP等工具遍历出默认蓝牙共享目

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-0244

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-0244

请登录查看更多情报信息。

http://www.seguridadmobile.com/windows-mobile/windows-mobile-security/Microsoft-Bluetooth-Stack-Directory-Traversal.htmlx_refsource_MISC
http://securityreason.com/securityalert/4938third-party-advisoryx_refsource_SREASON
http://www.securityfocus.com/bid/33359vdb-entryx_refsource_BID
http://secunia.com/advisories/33598third-party-advisoryx_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/48124vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/500199/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2009-0244

Same Patch Batch · n/a · 2009-01-21 · 38 CVEs total

CVE-2009-0002		Apple QuickTime Player 堆缓冲区溢出漏洞
CVE-2008-5931		Net Guys ASPired2Blog 权限许可和访问控制漏洞
CVE-2008-5932		CodeAvalanche FreeForum 权限许可和访问控制漏洞
CVE-2008-5933		CMS ISWEB 'index.php'多个跨站脚本攻击漏洞
CVE-2008-5934		CMS ISWEB 'index.php'SQL注入攻击漏洞
CVE-2008-5935		factosystem_weblog 权限许可和访问控制漏洞
CVE-2008-3864		Trend Micro Network Security 拒绝服务攻击漏洞
CVE-2008-3865		Trend Micro Internet Security 缓冲区错误漏洞
CVE-2008-3866		Trend Micro Internet Security产品安全组件防火墙安全绕过漏洞
CVE-2009-0001		Apple QuickTime 缓冲区错误漏洞
CVE-2008-5930		Net Guys ASPired2Blog "blog_comments.asp" SQL注入漏洞
CVE-2009-0003		Apple QuickTime Player 堆缓冲区溢出漏洞
CVE-2009-0004		Apple QuickTime Player 缓冲区错误漏洞
CVE-2009-0005		Apple QuickTime Player 未明安全漏洞
CVE-2009-0006		Apple QuickTime Player 整数符号错误和堆缓冲溢出漏洞
CVE-2009-0007		Apple QuickTime Player 堆缓冲区溢出漏洞
CVE-2009-0026		Apache Jackrabbit 跨站脚本漏洞
CVE-2009-0030		SquirrelMail 授权问题漏洞
CVE-2009-0243		Microsoft Windows NoDriveTypeAutoRun自动执行文件漏洞
CVE-2008-5921		Umer Inc Songs Portal 'albums.php' SQL注入漏洞

Showing top 20 of 38 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-0244

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-0244

I. Basic Information for CVE-2009-0244

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-0244

III. Intelligence Information for CVE-2009-0244

Same Patch Batch · n/a · 2009-01-21 · 38 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-0244

Leave a comment