The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote malicious users to bypass authentication and view source files, such as .asp, .pl, and .php files, via an HTTP request that ends in ";.cfm".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hitachi cosminexus enterprise 01 01 1 |
||
hitachi cosminexus enterprise 01 02 2 |
||
macromedia jrun 3.1 |
||
macromedia jrun 3.0 |
||
macromedia coldfusion 6.1 |
||
macromedia coldfusion 6.0 |
||
hitachi cosminexus server web 01-01 2 |
||
hitachi cosminexus server web 01-01 1 |
||
macromedia jrun 4.0 |