Vulnerability Note VU#202753

Autonomy Ultraseek URL redirection vulnerability

Original Release date: 28 Jan 2009 | Last revised: 28 Jan 2009


The Autonomy Ultraseek search engine contains a URL redirection vulnerability that may allow an attacker to redirect website users to other sites.


The Autonomy Ultraseek search engine contains a URL redirection vulnerability in the /cs.html?url= paramater. The destination URL can be obsfucated in the redirect by using URL encoding techniques. To exploit this issue, an attacker would need to get a user to click on a link or browse to a website.


An attacker may be able to redirect a user to any website.


Ultraseek administrators should contact Ultraseek support for information on how to obtain updated software that addresses this issue.


Using firewalls, reverse proxy servers, or web application firewalls to block URLs that contain the string /cs.html?url= may prevent some attackers from exploiting this vulnerablity. This workaournd can be evaded by URL obsfucation/encoding and will not be completely effective if the web server uses SSL.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
UltraseekAffected08 Jan 200928 Jan 2009
Verity, Inc.Affected08 Jan 200928 Jan 2009
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A



This document was written by Ryan Giobbi.

Other Information

  • CVE IDs: Unknown
  • Date Public: 11 Jan 2009
  • Date First Published: 28 Jan 2009
  • Date Last Updated: 28 Jan 2009
  • Severity Metric: 1.30
  • Document Revision: 14


If you have feedback, comments, or additional information about this vulnerability, please send us email.