The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote malicious users to bypass authentication and view source files, such as .asp, .pl, and .php files, via an HTTP request that ends in ";.cfm".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hitachi cosminexus enterprise 01_02_2 |
||
macromedia jrun 4.0 |
||
hitachi cosminexus enterprise 01_01_1 |
||
macromedia jrun 3.0 |
||
macromedia jrun 3.1 |
||
hitachi cosminexus server web_01-01_1 |
||
hitachi cosminexus server web_01-01_2 |
||
macromedia coldfusion 6.0 |
||
macromedia coldfusion 6.1 |