1 results (0.002 seconds)
CVSS: 5.0EPSS: 1%CPEs: 3EXPL: 0
CVSS: 5.0EPSS: 1%CPEs: 3EXPL: 0CVE-2002-0576
https://notcve.org/view.php?id=CVE-2002-0576
18 Jun 2002 — ColdFusion 5.0 and earlier on Windows systems allows remote attackers to determine the absolute pathname of .cfm or .dbm files via an HTTP request that contains an MS-DOS device name such as NUL, which leaks the pathname in an error message. • http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0028.html •