CVE-2009-4452

EPSS 0.15% · P36 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-4452

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); use weak permissions (Everyone:Full Control) for the BASES directory, which allows local users to gain SYSTEM privileges by replacing an executable or DLL with a Trojan horse.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

kaspersky_lab kaspersky_anti-virus_personal 权限许可和访问控制漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Kaspersky Anti-Virus; Antivirus Personal; Anti-Virus;以及Internet Security; use weak permissions (Everyone:Full Control) for the 对BASES目录使用脆弱的许可(每个人：完全控制)，本地用户可以将诶在 directory, which allows local users to gain SYSTEM privileges by replacing an executable or

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-4452

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-4452

请登录查看更多情报信息。

http://secunia.com/advisories/37398third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/37730third-party-advisoryx_refsource_SECUNIA
http://www.exploit-db.com/exploits/10484exploitx_refsource_EXPLOIT-DB
http://www.securitytracker.com/id?1023367vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id?1023366vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2009/3573vdb-entryx_refsource_VUPEN
http://www.securityfocus.com/archive/1/508508/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2009-4452

Same Patch Batch · n/a · 2009-12-29 · 13 CVEs total

CVE-2009-4455		Cisco ASA 5500 默认配置权限许可和访问控制漏洞
CVE-2009-4454		VideoCache vccleaner不安全日志文件访问安全漏洞
CVE-2009-4446		Ikemcg phpInstantGallery 'admin.php' 跨站脚本攻击漏洞
CVE-2009-4447		Jax Guestbook 'guestbook.admin.php'安全绕过漏洞
CVE-2009-4448		MyBB 'functions_time.php' adodb_mktime()函数日期参数拒绝服务漏洞
CVE-2009-4449		MyBB Avatar参数文件枚举信息泄露漏洞
CVE-2009-4450		LiveZilla 'map.php'页面多个跨站脚本漏洞
CVE-2009-4451		Php.Html kandalf upper 'upper.php'非限制文件上载漏洞
CVE-2009-4453		SoftCab Sound Converter ActiveX控件SaveFormat()不安全方法调用漏洞
CVE-2009-4444		Microsoft IIS畸形文件扩展名绕过安全限制漏洞
CVE-2009-4445		Microsoft iis 安全扩展名输入验证漏洞
CVE-2009-3295		MIT Kerberos KDC跨域Referral空指针引用拒绝服务漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-4452

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-4452

I. Basic Information for CVE-2009-4452

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-4452

III. Intelligence Information for CVE-2009-4452

Same Patch Batch · n/a · 2009-12-29 · 13 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-4452

Leave a comment