CVE-2004-2505

2005-10-2504:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

High

0.023 Low

EPSS

Percentile

89.6%

JSON

Macromedia ColdFusion MX before 6.1 does not restrict the size of error messages, which allows remote attackers to cause a denial of service (memory consumption and crash) by sending repeated GET or POST requests that trigger error messages that use long strings of data.

References

archives.neohapsis.com/archives/bugtraq/2004-04/0184.html

www.securityfocus.com/bid/10163

exchange.xforce.ibmcloud.com/vulnerabilities/15895