Remote Port Scanning Vulnerability in Google Mini and Search Appliances
CVE-2005-3756

Currently unrated

Key Information:

Vendor

Google

Vendor
CVE Published:
22 November 2005

What is CVE-2005-3756?

A vulnerability exists in the Google Mini Search Appliance, and potentially in the Google Search Appliance, which allows remote attackers to execute port scans on arbitrary hosts by leveraging manipulated URLs. By analyzing the resultant error messages, attackers can infer the status of various ports, identifying which are open or closed. This flaw poses a risk to network security by enabling unauthorized reconnaissance of network services.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.