Lucene search
PRIOn knowledge basePRION:CVE-2011-0737HistoryFeb 01, 2011 - 6:00 p.m.
Information disclosure
2011-02-0118:00:00
PRIOn knowledge base
www.prio-n.com
3
DISPUTED Adobe ColdFusion 9.0.1 CHF1 and earlier allows remote attackers to obtain sensitive information via an id=- query to a .cfm file, which reveals the installation path in an error message. NOTE: the vendor disputes the significance of this issue because the Site-wide Error Handler and Debug Output Settings sections of the ColdFusion Lockdown guide explain the requirement for settings that prevent this information disclosure.
| CPE | Name | Operator | Version |
|---|---|---|---|
| coldfusion | eq | 7.0.2 | |
| coldfusion | eq | 8.0 | |
| coldfusion | eq | 9.0 | |
| coldfusion | eq | 6.0 | |
| coldfusion | eq | 7.0 | |
| coldfusion | eq | 5.0 | |
| coldfusion | eq | 6.1 | |
| coldfusion | eq | 7.0.1 | |
| coldfusion | eq | 8.0.1 | |
| coldfusion | le | 9.0.1 |
Related
nvd
nvd
CVE-2011-0737
2011-02-01 18:00:04
cve
cve
CVE-2011-0737
2011-02-01 18:00:04
cvelist
cvelist
CVE-2011-0737
2011-02-01 17:00:00
vulnrichment
vulnrichment
CVE-2011-0737
2011-02-01 17:00:00