Vulnerabilities > CVE-2002-1309 - Remote Security vulnerability in Macromedia Coldfusion 6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Heap-based buffer overflow in the error-handling mechanism for the IIS ISAPI handler in Macromedia ColdFusion 6.0 allows remote attackers to execute arbitrary via an HTTP GET request with a long .cfm file name.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |