Lucene search
K

Cold Fusion Administration Page Overflow

🗓️ 03 Nov 2005 00:00:00Reported by This script is Copyright (C) 2000 Matt MooreType 
openvas
 openvas
🔗 plugins.openvas.org👁 26 Views

Cold Fusion Administration Page Overflow. Denial of service vulnerability in ColdFusion web server allowing attacker to overwhelm server

Related
Code
ReporterTitlePublishedViews
Family
Tenable Nessus
Cold Fusion Administration Page Overflow DoS
19 Dec 200000:00
nessus
CVE
CVE-2000-0538
13 Oct 200004:00
cve
Cvelist
CVE-2000-0538
13 Oct 200004:00
cvelist
EUVD
EUVD-2000-0535
7 Oct 202500:30
euvd
NVD
CVE-2000-0538
7 Jun 200004:00
nvd
OpenVAS
Cold Fusion Administration Page Overflow
3 Nov 200500:00
openvas
# OpenVAS Vulnerability Test
# $Id: cold_fusion_admin_dos.nasl 8023 2017-12-07 08:36:26Z teissa $
# Description: Cold Fusion Administration Page Overflow
#
# Authors:
# Matt Moore <[email protected]>
# Update - 13.9.01 - Felix Huber <[email protected]>
#
# Copyright:
# Copyright (C) 2000 Matt Moore
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

tag_summary = "A denial of service vulnerability exists within the Allaire
ColdFusion web application server (version 4.5.1 and earlier) which allows an 
attacker to overwhelm the web server and deny legitimate web page requests.

By downloading and altering the login HTML form an attacker can send overly 
large passwords (>40,0000 chars) to the server, causing it to stop responding.";

tag_solution = "Use HTTP basic authentication to restrict access to this page or
remove it entirely if remote administration is not a requirement. 
A patch should be available from allaire - www.allaire.com..";

if(description)
{
 script_id(10581);
 script_version("$Revision: 8023 $");
 script_tag(name:"last_modification", value:"$Date: 2017-12-07 09:36:26 +0100 (Thu, 07 Dec 2017) $");
 script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
 script_bugtraq_id(1314);
 script_tag(name:"cvss_base", value:"5.0");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
 script_cve_id("CVE-2000-0538");
 name = "Cold Fusion Administration Page Overflow";
 script_name(name);
 



 
 
 script_category(ACT_ATTACK);
  script_tag(name:"qod_type", value:"remote_vul");
 
 
 script_copyright("This script is Copyright (C) 2000 Matt Moore");
 family = "Web application abuses";
 script_family(family);
 script_dependencies("find_service.nasl", "no404.nasl");
 script_require_ports("Services/www", 80);
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name : "summary" , value : tag_summary);
 exit(0);
}

# Check starts here

include("http_func.inc");
include("http_keepalive.inc");

port = get_http_port(default:80);

if(get_port_state(port))
{ 
 # CFIDE will work with CF Linux also
 req = http_get(item:"/CFIDE/administrator/index.cfm",
 		port:port);
 r = http_keepalive_send_recv(port:port, data:req);
 if("PasswordProvided" >< r && "cf50" >!< r)	
 	security_message(port);

}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation