MondoSoft MondoSearch Multiple Vulnerabilities
BID:10034
Info
MondoSoft MondoSearch Multiple Vulnerabilities
| Bugtraq ID: | 10034 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 02 2004 12:00AM |
| Updated: | Apr 02 2004 12:00AM |
| Credit: | Discovery is credited to Uffe Nielsen <[email protected]>. |
| Vulnerable: |
MondoSoft MondoSearch 5.1 MondoSoft MondoSearch 5.0 MondoSoft MondoSearch 4.4 |
| Not Vulnerable: |
MondoSoft MondoSearch 5.1 b |
Discussion
MondoSoft MondoSearch Multiple Vulnerabilities
Multiple vulnerabilities have been identified in the MondoSearch application that may allow an attacker to use a vulnerable host as a proxy to access third party web sites, cause denial of service conditions and disclose sensitive information.
Multiple vulnerabilities have been identified in the MondoSearch application that may allow an attacker to use a vulnerable host as a proxy to access third party web sites, cause denial of service conditions and disclose sensitive information.
Exploit / POC
MondoSoft MondoSearch Multiple Vulnerabilities
No exploit is required.
No exploit is required.
Solution / Fix
MondoSoft MondoSearch Multiple Vulnerabilities
Solution:
The vendor has released MondoSearch 5.1b to address these issues.
MondoSoft MondoSearch 4.4
MondoSoft MondoSearch 5.0
MondoSoft MondoSearch 5.1
Solution:
The vendor has released MondoSearch 5.1b to address these issues.
MondoSoft MondoSearch 4.4
-
MondoSoft MondoSearch 5.1b
http://www.mondosoft.com/download/default.asp
MondoSoft MondoSearch 5.0
-
MondoSoft MondoSearch 5.1b
http://www.mondosoft.com/download/default.asp
MondoSoft MondoSearch 5.1
-
MondoSoft MondoSearch 5.1b
http://www.mondosoft.com/download/default.asp