FreeBSD Ports: Mnogosearch Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://lists.netsys.com/pipermail/full-disclosure/2004-February/017366.html http://www.vuxml.org/freebsd/87cc48fd-5fdd-11d8-80e3-0020ed76ef5a.html

Insight

The following package is affected: mnogosearch This version of mnogosearch suffers from a buffer overflow in the UdmDocToTextBuf function that may allow a remote attacker to execute arbitrary code by indexing a large document.

Severity

Classification

CVE CVE-2004-0288

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

FreeBSD Ports: courier
FreeBSD Ports: chromium
FreeBSD Ports: chromium
FreeBSD Ports: apache, apache-event, apache-itk, apache-peruser, apache-worker
FreeBSD Ports: anubis

FreeBSD Ports: mnogosearch

Take action and discover your vulnerabilities