Infoseek Ultraseek Enterprise Search Server Buffer Overflow Vulnerability

vendor:

Ultraseek Enterprise Search Server

by:

SecurityFocus

7.5

CVSS

HIGH

Buffer Overflow

120

CWE

Product Name: Ultraseek Enterprise Search Server

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: Yes

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2002

Infoseek Ultraseek Enterprise Search Server Buffer Overflow Vulnerability

Infoseek's Ultraseek enterprise search server listens on port 8765 by default for HTTP commands. The code that handles GET commands has an unchecked buffer that will allow arbitrary code to be executed if it is overflowed.

Mitigation:

Upgrade to the latest version of Infoseek Ultraseek Enterprise Search Server

Source

Infoseek Ultraseek Enterprise Search Server Buffer Overflow Vulnerability

Mitigation:

Exploit-DB raw data: