CVE-2009-0347

Опубликовано: 29 янв. 2009

Источник: nvd

CVSS2: 5.8

EPSS Низкий

Описание

Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter.

Ссылки

http://sunbeltblog.blogspot.com/2009/01/constant-stream-of-ultraseek-redirects.html
http://www.kb.cert.org/vuls/id/202753
US Government Resource
http://www.securityfocus.com/bid/33500
http://www.ultraseek.com/forums/thread.jspa?messageID=9818
https://exchange.xforce.ibmcloud.com/vulnerabilities/48336
http://sunbeltblog.blogspot.com/2009/01/constant-stream-of-ultraseek-redirects.html
http://www.kb.cert.org/vuls/id/202753
US Government Resource
http://www.securityfocus.com/bid/33500
http://www.ultraseek.com/forums/thread.jspa?messageID=9818
https://exchange.xforce.ibmcloud.com/vulnerabilities/48336

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:autonomy:ultraseek:_nil_:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.03639

Низкий

5.8 Medium

CVSS2

Дефекты

CWE-59

Связанные уязвимости

GHSA-h69g-fw62-jj7r

github

почти 4 года назад