CVE-2009-1473

EPSS 0.94% · P76 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1473

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The (1) Windows and (2) Java client programs for the ATEN KH1516i IP KVM switch with firmware 1.0.063 and the KN9116 IP KVM switch with firmware 1.1.104 do not properly use RSA cryptography for a symmetric session-key negotiation, which makes it easier for remote attackers to (a) decrypt network traffic, or (b) conduct man-in-the-middle attacks, by repeating unspecified "client-side calculations."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

ATEN IP KVM交换机密钥交换安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IP KVM是台湾宏正自动科技成的系列交换机设备。 IP KVM交换机与客户端机器之间的连接所使用的加密方式存在多个漏洞，远程攻击者可以破解加密并扮演为其他用户执行恶意操作。密钥交换加密弱点，当Windows/Java客户端连接到设备时，kvm交换机和客户端会协商一个对称的会话密钥。这个密钥协商以不安全的方式使用了RSA，能够监控客户端与交换机之间通讯的攻击者可以重复客户端的计算并获得会话密钥，然后使用这个密钥解密通讯并重建键盘敲击，或执行中间人攻击访问连接到交换机上的机器。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1473

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1473

请登录查看更多情报信息。

http://secunia.com/advisories/35241third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/35108vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/50849vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/503827/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2009-1473

Same Patch Batch · n/a · 2009-05-27 · 5 CVEs total

CVE-2009-0588		Red Hat认证系统代理组安全绕过漏洞
CVE-2009-1472		ATEN IP KVM交换机Java客户端任意代码执行漏洞
CVE-2009-1474		ATEN IP KVM交换机不彻底加密和不安全会话ID Cookie漏洞
CVE-2009-1477		ATEN IP KVM交换机HTTPS Web接口同一SSL密钥漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-1473

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-1473

I. Basic Information for CVE-2009-1473

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-1473

III. Intelligence Information for CVE-2009-1473

Same Patch Batch · n/a · 2009-05-27 · 5 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-1473

Leave a comment