CVE-2005-3755

Опубликовано: 22 нояб. 2005

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to determine the existence of arbitrary files via a relative path from a style sheet directory, then comparing the resulting error messages.

Ссылки

http://metasploit.com/research/vulns/google_proxystylesheet/
Patch
Vendor Advisory
http://secunia.com/advisories/17644
Vendor Advisory
http://securitytracker.com/id?1015246
Vendor Advisory
http://www.osvdb.org/20977
Patch
http://www.securityfocus.com/archive/1/417310/30/0/threaded
http://www.securityfocus.com/bid/15509
Patch
http://www.vupen.com/english/advisories/2005/2500
http://metasploit.com/research/vulns/google_proxystylesheet/
Patch
Vendor Advisory
http://secunia.com/advisories/17644
Vendor Advisory
http://securitytracker.com/id?1015246
Vendor Advisory
http://www.osvdb.org/20977
Patch
http://www.securityfocus.com/archive/1/417310/30/0/threaded
http://www.securityfocus.com/bid/15509
Patch
http://www.vupen.com/english/advisories/2005/2500

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:google:mini_search_appliance:*:*:*:*:*:*:*:*

cpe:2.3:h:google:search_appliance:*:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04746

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-7v8f-p668-mq6v

github

почти 4 года назад