2 results (0.001 seconds)
CVSS: 5.3EPSS: 1%CPEs: 7EXPL: 2CVSS: 7.5EPSS: 5%CPEs: 3EXPL: 0
CVSS: 5.3EPSS: 1%CPEs: 7EXPL: 2CVE-2003-1469 – Macromedia ColdFusion MX 6.0 - Error Message Full Path Disclosure
https://notcve.org/view.php?id=CVE-2003-1469
31 Dec 2003 — The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option selected, which allows remote attackers to obtain the full path of the web server via a direct request to CFIDE/probe.cfm, which leaks the path in an error message. • https://www.exploit-db.com/exploits/22544 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 5%CPEs: 3EXPL: 0CVE-2002-1992
https://notcve.org/view.php?id=CVE-2002-1992
31 Dec 2002 — Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote attackers to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header. • http://www.iss.net/security_center/static/9460.php •