Lucene search
HistoryNov 23, 2004 - 5:00 a.m.
CVE-2004-0288
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.8
Confidence
High
EPSS
0.049
Percentile
92.8%
Buffer overflow in the UdmDocToTextBuf function in mnoGoSearch 3.2.13 through 3.2.15 could allow remote attackers to execute arbitrary code by indexing a large document.
Affected configurations
Node
mnogosearchmnogosearchMatch3.1.19
ORmnogosearchmnogosearchMatch3.1.20
ORmnogosearchmnogosearchMatch3.2.10
ORmnogosearchmnogosearchMatch3.2.13
ORmnogosearchmnogosearchMatch3.2.14
ORmnogosearchmnogosearchMatch3.2.15
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mnogosearch | mnogosearch | 3.1.19 | cpe:2.3:a:mnogosearch:mnogosearch:3.1.19:*:*:*:*:*:*:* |
| mnogosearch | mnogosearch | 3.1.20 | cpe:2.3:a:mnogosearch:mnogosearch:3.1.20:*:*:*:*:*:*:* |
| mnogosearch | mnogosearch | 3.2.10 | cpe:2.3:a:mnogosearch:mnogosearch:3.2.10:*:*:*:*:*:*:* |
| mnogosearch | mnogosearch | 3.2.13 | cpe:2.3:a:mnogosearch:mnogosearch:3.2.13:*:*:*:*:*:*:* |
| mnogosearch | mnogosearch | 3.2.14 | cpe:2.3:a:mnogosearch:mnogosearch:3.2.14:*:*:*:*:*:*:* |
| mnogosearch | mnogosearch | 3.2.15 | cpe:2.3:a:mnogosearch:mnogosearch:3.2.15:*:*:*:*:*:*:* |
Related
openvas
openvas
FreeBSD Ports: mnogosearch
2008-09-04 00:00:00
FreeBSD Ports: mnogosearch
2008-09-04 00:00:00
cvelist
cvelist
CVE-2004-0288
2004-03-18 05:00:00
cve
cve
CVE-2004-0288
2004-11-23 05:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.8
Confidence
High
EPSS
0.049
Percentile
92.8%
Related for NVD:CVE-2004-0288