CVE Vulnerabilities

CVE-2001-1120

Published: Jul 11, 2001 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2 allow remote attackers to (1) read or delete arbitrary files, or (2) overwrite ColdFusion Server templates.

Affected Software

Name Vendor Start Version End Version
Coldfusion_server Allaire 2.0 2.0
Coldfusion_server Allaire 3.0 3.0
Coldfusion_server Allaire 3.0.1 3.0.1
Coldfusion_server Allaire 3.1 3.1
Coldfusion_server Allaire 3.1.1 3.1.1
Coldfusion_server Allaire 3.1.2 3.1.2
Coldfusion_server Allaire 4.0 4.0
Coldfusion_server Allaire 4.0.1 4.0.1
Coldfusion_server Allaire 4.5 4.5
Coldfusion_server Allaire 4.5.1 4.5.1
Coldfusion_server Allaire 4.5.1_sp1 4.5.1_sp1
Coldfusion_server Allaire 4.5.1_sp2 4.5.1_sp2

References