CVE-2005-3756

Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to port scan arbitrary hosts via URLs with modified targets and ports, then comparing the resulting error messages to determine open and closed ports.

Published: Nov 22, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-3756
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
google / mini_search_appliance	-	-
google / search_appliance	-	-

http://metasploit.com/research/vulns/google_proxystylesheet/
http://secunia.com/advisories/17644
http://securitytracker.com/id?1015246
http://www.osvdb.org/20979
http://www.securityfocus.com/archive/1/417310/30/0/threaded
http://www.securityfocus.com/bid/15509
http://www.vupen.com/english/advisories/2005/2500

Vulnerability Database

290,020

CVE-2005-3756