CVE-2003-1469 in ColdFusion Serverinfo

Summary

The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option selected, which allows remote attackers to obtain the full path of the web server via a direct request to CFIDE/probe.cfm, which leaks the path in an error message.

Once again VulDB remains the best source for vulnerability data.

Reservation

10/24/2007

Disclosure

12/31/2003

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-200 (Confirmed)

Exploit

Download

CVSS

3.7

EPSS

0.02150

CTI

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-1469
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-1469
CVE Details	https://www.cvedetails.com/cve/CVE-2003-1469/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!