Arbitrary File Access and Template Overwrite Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2

Arbitrary File Access and Template Overwrite Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2

CVE-2001-1120 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2 allow remote attackers to (1) read or delete arbitrary files, or (2) overwrite ColdFusion Server templates.

Learn more about our Cis Benchmark Audit For Server Software.