Filtered by vendor Macromedia Subscriptions
Filtered by product Coldfusion Professional Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2003-1469 2 Macromedia, Microsoft 5 Coldfusion, Coldfusion Professional, Windows 2000 and 2 more 2024-11-21 N/A
The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option selected, which allows remote attackers to obtain the full path of the web server via a direct request to CFIDE/probe.cfm, which leaks the path in an error message.
CVE-2002-1992 1 Macromedia 2 Coldfusion, Coldfusion Professional 2024-11-21 N/A
Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote attackers to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header.