Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0455

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-1999-0455
Last Modified 09 Sep 2008 08:34:36
Published 25 Dec 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-0455

Summary

The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.

Vulnerable Systems

Application

  • Allaire Coldfusion Server 4.0


References

BID - 115


Last Updated: 27 May 2016 10:34:58