Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2 allow remote attackers to (1) read or delete arbitrary files, or (2) overwrite ColdFusion Server templates.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Coldfusion_server | Allaire | 2.0 | 2.0 |
Coldfusion_server | Allaire | 3.0 | 3.0 |
Coldfusion_server | Allaire | 3.0.1 | 3.0.1 |
Coldfusion_server | Allaire | 3.1 | 3.1 |
Coldfusion_server | Allaire | 3.1.1 | 3.1.1 |
Coldfusion_server | Allaire | 3.1.2 | 3.1.2 |
Coldfusion_server | Allaire | 4.0 | 4.0 |
Coldfusion_server | Allaire | 4.0.1 | 4.0.1 |
Coldfusion_server | Allaire | 4.5 | 4.5 |
Coldfusion_server | Allaire | 4.5.1 | 4.5.1 |
Coldfusion_server | Allaire | 4.5.1_sp1 | 4.5.1_sp1 |
Coldfusion_server | Allaire | 4.5.1_sp2 | 4.5.1_sp2 |