Vulnerabilities > CVE-2004-2061 - Server-Side Request Forgery (SSRF) vulnerability in Risearch and Risearch PRO
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
description RiSearch 0.99 /RiSearch Pro 3.2.6 show.pl Arbitrary File Access. CVE-2004-2061. Remote exploit for cgi platform id EDB-ID:24327 last seen 2016-02-02 modified 2004-07-27 published 2004-07-27 reporter Phil Robinson source https://www.exploit-db.com/download/24327/ title RiSearch 0.99 /RiSearch Pro 3.2.6 show.pl Arbitrary File Access description RiSearch 0.99 /RiSearch Pro 3.2.6 show.pl Open Proxy Relay. CVE-2004-2061. Remote exploit for cgi platform id EDB-ID:24326 last seen 2016-02-02 modified 2004-07-27 published 2004-07-27 reporter Phil Robinson source https://www.exploit-db.com/download/24326/ title RiSearch 0.99 /RiSearch Pro 3.2.6 show.pl Open Proxy Relay
Nessus
NASL family CGI abuses NASL id RISEARCH_ARBITRARY_FILE_ACCESS.NASL description The remote host appears to be running RiSearch, a local search engine. This version contains an information disclosure vulnerability. Passing a local file URI to last seen 2020-06-01 modified 2020-06-02 plugin id 14222 published 2004-08-04 reporter This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14222 title RiSearch show.pl Arbitrary File Access NASL family CGI abuses NASL id RISEARCH_OPEN_PROXY.NASL description The remote host seems to be running RiSearch, a local search engine. There is a flaw in the CGI last seen 2020-06-01 modified 2020-06-02 plugin id 14180 published 2004-08-02 reporter This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14180 title RiSearch show.pl Open Proxy Relay
References
- http://marc.info/?l=bugtraq&m=109095196526490&w=2
- http://marc.info/?l=bugtraq&m=109095196526490&w=2
- http://secunia.com/advisories/12173
- http://secunia.com/advisories/12173
- http://securitytracker.com/id?1010788
- http://securitytracker.com/id?1010788
- http://www.osvdb.org/8265
- http://www.osvdb.org/8265
- http://www.osvdb.org/8266
- http://www.osvdb.org/8266
- http://www.securityfocus.com/bid/10812
- http://www.securityfocus.com/bid/10812
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16817
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16817