Vulnerability Details : CVE-2005-3756
Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to port scan arbitrary hosts via URLs with modified targets and ports, then comparing the resulting error messages to determine open and closed ports.
Products affected by CVE-2005-3756
- cpe:2.3:h:google:mini_search_appliance:*:*:*:*:*:*:*:*
- cpe:2.3:h:google:search_appliance:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-3756
0.62%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 79 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-3756
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2005-3756
-
http://www.vupen.com/english/advisories/2005/2500
-
http://metasploit.com/research/vulns/google_proxystylesheet/
Patch;Vendor Advisory
-
http://www.securityfocus.com/archive/1/417310/30/0/threaded
-
http://securitytracker.com/id?1015246
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/15509
Google Search Appliance ProxyStyleSheet Multiple Remote VulnerabilitiesPatch
Jump to