CVE-2009-0850
First published: Mon Mar 09 2009(Updated: )
Cross-site scripting (XSS) vulnerability in BitDefender Internet Security 2009 allows user-assisted remote attackers to inject arbitrary web script or HTML via the filename of a virus-infected file, as demonstrated by a filename inside a (1) rar or (2) zip archive file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| BitDefender Internet Security | =2009 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-0850?
The severity of CVE-2009-0850 is medium, with a score of 4.3.
How do I fix CVE-2009-0850?
To fix CVE-2009-0850, it is recommended to update to a newer version of BitDefender Internet Security that addresses this vulnerability.
What kind of vulnerability is CVE-2009-0850?
CVE-2009-0850 is a Cross-site scripting (XSS) vulnerability.
What affected software is associated with CVE-2009-0850?
CVE-2009-0850 affects BitDefender Internet Security version 2009.
How can attackers exploit CVE-2009-0850?
Attackers can exploit CVE-2009-0850 by injecting arbitrary web script or HTML through the filename of a virus-infected file in compressed archives.
- collector/nvd-historical
- collector/nvd-index
- vendor/bitdefender
- product/internet security
- canonical/bitdefender internet security