CVE-2009-0347

UNRATED

Public PoC

Description

Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter.

Affected products

Autonomy / ultraseek_nil_ – _nil_

Exploits & PoCs

nucleiAutonomy Ultraseek - Open Redirectby ctflearner

References

MISChttp://sunbeltblog.blogspot.com/2009/01/constant-stream-of-ultraseek-redirects.html
MISChttp://www.kb.cert.org/vuls/id/202753
MISChttp://www.securityfocus.com/bid/33500
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/48336
MISChttp://www.ultraseek.com/forums/thread.jspa?messageID=9818