Vulnerabilities > CVE-2005-2481 - Unspecified vulnerability in Macromedia Coldfusion Fusebox 4.1.0

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

macromedia

NVD

Published: 2005-08-05

Updated: 2016-10-18

Summary

ColdFusion Fusebox 4.1.0 allows remote attackers to obtain sensitive information via an invalid fuseaction parameter, which leaks the full server path in an error message, as demonstrated using the "?" (question mark) character.

Vulnerable Configurations

Part	Description	Count
Application	Macromedia Macromedia Coldfusion Fusebox 4.1.0	1

References

http://marc.info/?l=bugtraq&m=112309656102615&w=2