Inktomi Search Software 3.0 – Source Disclosure

Inktomi Search Software 3.0 – Source Disclosure

漏洞ID 1053498 漏洞类型
发布时间 2000-12-05 更新时间 2000-12-05
图片[1]-Inktomi Search Software 3.0 – Source Disclosure-安全小百科CVE编号 N/A
图片[2]-Inktomi Search Software 3.0 – Source Disclosure-安全小百科CNNVD-ID N/A
漏洞平台 Multiple CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/20467
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/2061/info


A vulnerability exists in version 3.0 of Ultrseek server (aka Inktomi Search).

Due to a failure to properly validate user-supplied input, URLs submitted by a remote user of the form:

http://target:8765/somefile.html/

will return the source to 'somefile.html'.

As a result, it is possible for an attacker to obtain source code to any Ultraseek scripts, which could be used to support further attacks.

相关推荐: AppleShare IP 6.x Invalid Range Request Vulnerability

AppleShare IP 6.x Invalid Range Request Vulnerability 漏洞ID 1104174 漏洞类型 Failure to Handle Exceptional Conditions 发布时间 2000-05-02 更…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享