Vulnerability Name:

CCN-6928

Published:2001-07-30
Updated:2001-07-30
Summary:Macromedia ColdFusion is vulnerable to a denial of service attack. If ColdFusion is being used with Linux, a local attacker can use the CFRETHROW tag to cause the server to crash. Once the server crashes, ColdFusion creates a core file in the /$installdir/coldfusion/logs directory that contains all the memory that was being used before the program crashed. An attacker can use this vulnerability to gain access to sensitive information about the server.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: BugTraq Mailing List, Mon Jul 30 2001 - 22:19:38 CDT
cold fusion 5.0 cfrethrow exploit

Source: CCN
Type: BugTraq Mailing List, Tue Jul 31 2001 - 12:39:41 CDT
RE: cold fusion 5.0 cfrethrow exploit

Source: CCN
Type: Macromedia Technote 17560
CFRETHROW Causes Server Restart to ColdFusion 4.5.1 on Linux

Source: CCN
Type: BID-3126
ColdFusion CFReThrow Tag Denial Of Service Vulnerability

Source: XF
Type: UNKNOWN
coldfusion-cfrethrow-dos(6928)

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:macromedia:coldfusion:4.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:macromedia:coldfusion:5.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    macromedia coldfusion 4.5.1
    macromedia coldfusion 5.0