CVE-2009-0437

EPSS 0.06% · P17 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0437

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Installation Factory installation process for IBM WebSphere Application Server (WAS) 6.0.2 on Windows, when WAS is registered as a Windows service, allows local users to obtain sensitive information by reading the logs/instconfigifwas6.log log file.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

IBM WebSphere Application Server Installation Factory 信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM WebSphere Application Server是一个完善的、开放的Web应用服务器，它是IBM电子商务应用架构的核心。 IBM WebSphere Application Server是IBM开发的当WAS作为一个Windows service被注册时，Windows上的IBM WebSphere Application Server (WAS) 6.0.2版本中的Installation Factory安装进程允许本地用户通过读取logs/instconfigifwas6.log登录文

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-0437

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-0437

请登录查看更多情报信息。

http://www.securityfocus.com/bid/33849vdb-entryx_refsource_BID
http://www-1.ibm.com/support/docview.wss?uid=swg1PK67405vendor-advisoryx_refsource_AIXAPAR
https://exchange.xforce.ibmcloud.com/vulnerabilities/48527vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2009-0437

Same Patch Batch · n/a · 2009-02-10 · 40 CVEs total

CVE-2009-0502		Moodle Snoopy 跨站脚本漏洞
CVE-2008-6099		rportal 'index.php'未明漏洞
CVE-2008-6100		Berlios Discussion Forums多个SQL注入漏洞
CVE-2008-6101		Ezonescripts Adult Banner Exchange Website 'click.php' SQL注入漏洞
CVE-2008-6102		ezonescripts Link Trader Script 'ratelink.php'SQL注入漏洞
CVE-2008-6103		a4desk_flash_event_calendar 'index.php'代码注入漏洞
CVE-2008-6104		A4Desk Event Calendar 'eventid' Parameter SQL注入漏洞
CVE-2009-0499		Moodle 跨站请求伪造漏洞
CVE-2009-0500		Moodle Log Table 跨站脚本漏洞
CVE-2009-0501		Moodle Calendar Export 信息泄露漏洞
CVE-2008-6108		Gwm Galatolo_webmanager 'result.php'跨站脚本攻击漏洞
CVE-2009-0490		Audacity 缓冲区错误漏洞
CVE-2009-0491		Elecard MPEG Player M3U文件处理栈溢出漏洞
CVE-2009-0492		SimpleIrcBot Authentication 未明安全绕过漏洞
CVE-2009-0493		IT!CMS 'login.php' SQL注入漏洞
CVE-2009-0494		Joomla! Portfol 'vcatid' SQL注入漏洞
CVE-2009-0495		REALTOR 747 'include/define.php'远程文件包含漏洞
CVE-2009-0496		Ignite_Realtime Openfire 'logviewer.jsp'跨站脚本攻击漏洞
CVE-2009-0497		Ignite_Realtime Openfire 'log.jsp'目录遍历漏洞
CVE-2009-0498		Minitdesign Virtual GuestBook guestbook.mdb权限许可和访问控制漏洞

Showing top 20 of 40 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-0437

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-0437

I. Basic Information for CVE-2009-0437

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-0437

III. Intelligence Information for CVE-2009-0437

Same Patch Batch · n/a · 2009-02-10 · 40 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-0437

Leave a comment