Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0347

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2009-0347
Last Modified 05 Feb 2009 01:53:39
Published 29 Jan 2009 02:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0347

Summary

Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter.

Vulnerable Systems

Application

  • Autonomy Ultraseek Nil


References

CERT-VN - VU#202753

XF - ultraseek-cs-phishing(48336)

MISC - http://www.ultraseek.com/forums/thread.jspa?messageID=9818

BID - 33500

MISC - http://sunbeltblog.blogspot.com/2009/01/constant-stream-of-ultraseek-redirects.html


Last Updated: 27 May 2016 10:50:12