Adobe ColdFusion Multiple Vulerabilities

Last Update Date: 16 Jan 2013 Release Date: 8 Jan 2013 5552 Views

RISK: High Risk

High Risk

TYPE: Servers - Internet App Servers

TYPE: Internet App Servers

Multiple vulnerabilities have been identified in Adobe ColdFusion. A remote user can gain access to the target system, and obtain potentially sensitive information.

  1. A remote user can bypass authentication and take control of the target system, and gain access to restricted directories. Only systems with password protection disabled or with no password set are affected.
  2. A remote user can obtain potentially sensitive information.

Note: The vulnerabilities are being exploited in the wild.

Impact

  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Versions 9.0, 9.0.1, 9.0.2, 10

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Oracle Products Multiple vulnerabilities

16 Jan 2013 4749 Views

Next

Samba Active Directory Domain Controller Access Control Vulnerability

17 Jan 2013 4566 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY