Cold Fusion Vulnerabilities

Updated 6/12/02

Impact

Various vulnerabilities in the sample scripts included in Cold Fusion could be exploited to read arbitrary files, upload files, or create a denial of service.

Note: The red stoplight on this page indicates the highest possible severity level for this category of vulnerabilities. To determine the severity level in this case, refer to the colored dot beside the link to this tutorial on the previous page.

Background

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

The Problems

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

Resolutions

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

Where can I read more about this?

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.