CVE-2009-1431

EPSS 22.23% · P96 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1431

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

XFR.EXE in the Intel File Transfer service in the console in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 before 9.0 MR7, 10.0 and 10.1 before 10.1 MR8, and 10.2 before 10.2 MR2; Symantec Client Security (SCS) 2 before 2.0 MR7 and 3 before 3.1 MR8; and Symantec Endpoint Protection (SEP) before 11.0 MR3, allows remote attackers to execute arbitrary code by placing the code on a (1) share or (2) WebDAV server, and then sending the UNC share pathname to this service.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Symantec Alert Management System 2 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Symantec Endpoint Protection是美国赛门铁克（Symantec）公司的一套防病毒软件。该软件可跨物理和虚拟系统提供安全防护功能。 Symantec Alert Management System 2 (AMS2)中的控制台的Intel File Transfer服务存在安全漏洞。远程攻击者可利用该漏洞执行任意代码。以下产品及版本受到影响：Symantec System Center (SSS)；Symantec AntiVirus Server；Symantec AntiViru

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1431

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1431

请登录查看更多情报信息。

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_02x_refsource_CONFIRM
http://www.securityfocus.com/bid/34675vdb-entryx_refsource_BID
http://secunia.com/advisories/34856third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1022130vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id?1022132vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id?1022131vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2009/1204vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/50179vdb-entryx_refsource_XF
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=786third-party-advisoryx_refsource_IDEFENSE
https://nvd.nist.gov/vuln/detail/CVE-2009-1431

Same Patch Batch · n/a · 2009-04-29 · 23 CVEs total

CVE-2009-1484		Gecad Axigen Mail Server web邮件界面跨站脚本攻击漏洞
CVE-2009-1478		Sun Solaris DTrace Handler IOCTL Request 多个本地拒绝服务漏洞
CVE-2009-1430		Symantec杀毒软件 Intel Alert Originator服务栈溢出漏洞
CVE-2009-1429		Symantec杀毒软件Intel LANDesk Common Base Agent服务任意代码执行漏洞
CVE-2009-1428		Symantec Log Viewer 'ccLgView.exe'多个跨站脚本攻击漏洞
CVE-2009-0719		HP-UX 'useradd'本地未授权访问漏洞
CVE-2009-1489		FunGamez 'includes/user.php'本地文件包含和SQL注入漏洞
CVE-2009-1488		FunGamez 'admin/load.php'目录遍历漏洞
CVE-2009-1487		FunGamez 'pages/login.php'SQL注入漏洞
CVE-2009-1486		Ninjadesigns Flatchat 'pmscript.php'目录遍历漏洞
CVE-2009-1485		emuleplus emule_plus拒绝服务漏洞
CVE-2008-6768		Shopsystem-Forum K&S Shopsystem 'admin/editor/images.php'未限制文件上传漏洞
CVE-2009-1483		Studio Lounge Address Book'upload-file.php'未限制文件上传漏洞
CVE-2009-1482		MoinMoin 'AttachFile.py'多个跨站脚本攻击漏洞
CVE-2009-1481		Pjhome PuterJam's Blog PJBlog3 'action.asp' SQL注入漏洞
CVE-2009-1480		Pragyan CMS 'index.php' SQL注入漏洞
CVE-2008-6774		peterselie yourplace 'internettoolbar/edit.php'权限许可和访问控制漏洞
CVE-2008-6773		Peterselie YourPlace 'user/internettoolbar/edit.php'静态代码注入漏洞
CVE-2008-6772		Peterselie YourPlace 'login/register_form.php'绕过权限漏洞
CVE-2008-6771		Peterselie YourPlace 'user/uploads/phpinfo.php'系统信息泄露漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-1431

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-1431

I. Basic Information for CVE-2009-1431

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-1431

III. Intelligence Information for CVE-2009-1431

Same Patch Batch · n/a · 2009-04-29 · 23 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-1431

Leave a comment