What is CVE-2009-20009?

CVE-2009-20009 is a vulnerability in Belkin International, Inc. Bulldog Plus Ups Monitoring Software, classified under Stack-based Buffer Overflow. Published 2025-08-30.

Is CVE-2009-20009 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Belkin International, Inc. Bulldog Plus Ups Monitoring Software

CVE-2009-20009

Belkin Bulldog Plus version 4.0.2 build 1219 contains a stack-based buffer overflow vulnerability in its web service authentication handler. When a specially crafted HTTP request is sent with an oversized Authorization header, the applicat…

Vulnerability class: Buffer Overflow

EPSS: 0.626 (98.4th percentile) — read the EPSS interpretation.

Affected products

Belkin International, Inc. Bulldog Plus Ups Monitoring Software — versions 0

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

Public proof-of-concept exploits

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/w… (exploit)
www.exploit-db.com/exploits/8173 (exploit)
www.fortiguard.com/encyclopedia/ips/17325/belkin-bulldog-plus-web-services-buff… (third-party-advisory)
s3.belkin.com/support/dl/bulldogwindows.pdf (product)
www.vulncheck.com/advisories/belkin-bulldog-plus-web-service-buffer-overflow (third-party-advisory)

Frequently asked questions

What is CVE-2009-20009?: CVE-2009-20009 is a vulnerability in Belkin International, Inc. Bulldog Plus Ups Monitoring Software, classified under Stack-based Buffer Overflow. Published 2025-08-30.
Is CVE-2009-20009 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.