Autonomy Ultraseek 'cs.html' URI Redirection Vulnerability



EDB-ID: 32766 CVE: 2009-0347 OSVDB-ID: 52927
Author: buzzy Published: 2009-01-28 Verified: Verified
Exploit Code:   Download Vulnerable App:   N/A

Rating

(0.0)
Prev Home Next
source: http://www.securityfocus.com/bid/33500/info

Autonomy Ultraseek is prone to a remote URI-redirection vulnerability because the application fails to properly sanitize user-supplied input.

A successful exploit may aid in phishing attacks.

http://www.example.com/cs.html?url=http://www.example2.com