Vulnerabilities > CVE-1999-0757 - Unspecified vulnerability in Allaire Coldfusion Server

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
allaire
exploit available
NVD
Published: 2001-03-12
Updated: 2017-12-19

Summary

The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing attackers to decrypt the templates.

Vulnerable Configurations

Part Description Count
Application
Allaire
1

Exploit-Db

descriptionAllaire ColdFusion Server 4.0.1 CFCRYPT.EXE Vulnerability. CVE-1999-0757. Local exploit for windows platform
idEDB-ID:19220
last seen2016-02-02
modified1998-05-19
published1998-05-19
reporterMatt Chapman
sourcehttps://www.exploit-db.com/download/19220/
titleAllaire ColdFusion Server <= 4.0.1 - CFCRYPT.EXE Vulnerability

References