English
Français
Light
Dark
System

Alert System

Stay informed at all times
Create an account Open a free account Login Manage your alerts

Macromedia ColdFusion 4.5 Enterprise

CPE Details

Macromedia ColdFusion 4.5 Enterprise
macromedia
coldfusion
4.5
2007-08-23 19:16 +00:00
2008-04-07 12:17 +00:00
CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.
Alert management

CPE Name: cpe:2.3:a:macromedia:coldfusion:4.5:*:*:*:*:*:*:*

Informations

Vendor

macromedia

Product

coldfusion

Version

4.5

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2003-1469 2007-10-24 21:00 +00:00 The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option selected, which allows remote attackers to obtain the full path of the web server via a direct request to CFIDE/probe.cfm, which leaks the path in an error message.
5
CVE-2001-1514 2005-07-14 04:00 +00:00 ColdFusion 4.5 and 5, when running on Windows with the advanced security sandbox type set to "operating system," does not properly pass security context to (1) child processes created with and (2) child processes that call the CreateProcess function and are executed with or end with the CFX extension, which allows attackers to execute programs with the permissions of the System account.
10
CVE-2002-1992 2005-07-14 04:00 +00:00 Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote attackers to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header.
5
CVE-2001-1427 2005-03-22 04:00 +00:00 Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors.
7.5