Vulnerabilities > CVE-2006-5019 - Information Disclosure vulnerability in Google Mini Search Appliance 3.4.14/4.4.102.M.36
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Google Mini 4.4.102.M.36 and earlier allows remote attackers to obtain sensitive information via a direct request for /search with an invalid client parameter, which reveals the path in an error message.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Hardware | 3 |
Exploit-Db
| description | Google Mini Search Appliance 4.4.102.M.36 Information Disclosure Vulnerability. CVE-2006-5019. Webapps exploit for php platform |
| id | EDB-ID:28644 |
| last seen | 2016-02-03 |
| modified | 2006-09-22 |
| published | 2006-09-22 |
| reporter | Patrick Webster |
| source | https://www.exploit-db.com/download/28644/ |
| title | Google Mini Search Appliance 4.4.102.M.36 Information Disclosure Vulnerability |
References
- http://secunia.com/advisories/22059
- http://securityreason.com/securityalert/1637
- http://users.tpg.com.au/adsl2dvp/advisories/200609-googlemini.txt
- http://www.securityfocus.com/archive/1/446728/100/0/threaded
- http://www.securityfocus.com/bid/20149
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29111