Lucene search

MitreCVE-2000-0538

HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0538

2000-10-1304:00:00

mitre

web.nvd.nist.gov

coldfusion 4.5.1

dos attack

long login password

cve-2000-0538.

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.023

Percentile

89.7%

JSON

ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password.

Affected configurations

Nvd

Node

allairecoldfusion_serverMatch2.0

allairecoldfusion_serverMatch3.0

allairecoldfusion_serverMatch3.01

allairecoldfusion_serverMatch3.1

allairecoldfusion_serverMatch3.11

allairecoldfusion_serverMatch3.12

allairecoldfusion_serverMatch4.0

allairecoldfusion_serverMatch4.0.1

allairecoldfusion_serverMatch4.5

allairecoldfusion_serverMatch4.5.1

VendorProductVersionCPE
allairecoldfusion_server2.0cpe:2.3:a:allaire:coldfusion_server:2.0:*:*:*:*:*:*:*
allairecoldfusion_server3.0cpe:2.3:a:allaire:coldfusion_server:3.0:*:*:*:*:*:*:*
allairecoldfusion_server3.01cpe:2.3:a:allaire:coldfusion_server:3.01:*:*:*:*:*:*:*
allairecoldfusion_server3.1cpe:2.3:a:allaire:coldfusion_server:3.1:*:*:*:*:*:*:*
allairecoldfusion_server3.11cpe:2.3:a:allaire:coldfusion_server:3.11:*:*:*:*:*:*:*
allairecoldfusion_server3.12cpe:2.3:a:allaire:coldfusion_server:3.12:*:*:*:*:*:*:*
allairecoldfusion_server4.0cpe:2.3:a:allaire:coldfusion_server:4.0:*:*:*:*:*:*:*
allairecoldfusion_server4.0.1cpe:2.3:a:allaire:coldfusion_server:4.0.1:*:*:*:*:*:*:*
allairecoldfusion_server4.5cpe:2.3:a:allaire:coldfusion_server:4.5:*:*:*:*:*:*:*
allairecoldfusion_server4.5.1cpe:2.3:a:allaire:coldfusion_server:4.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
allaire	coldfusion_server	2.0	cpe:2.3:a:allaire:coldfusion_server:2.0:::::::*
allaire	coldfusion_server	3.0	cpe:2.3:a:allaire:coldfusion_server:3.0:::::::*
allaire	coldfusion_server	3.01	cpe:2.3:a:allaire:coldfusion_server:3.01:::::::*
allaire	coldfusion_server	3.1	cpe:2.3:a:allaire:coldfusion_server:3.1:::::::*
allaire	coldfusion_server	3.11	cpe:2.3:a:allaire:coldfusion_server:3.11:::::::*
allaire	coldfusion_server	3.12	cpe:2.3:a:allaire:coldfusion_server:3.12:::::::*
allaire	coldfusion_server	4.0	cpe:2.3:a:allaire:coldfusion_server:4.0:::::::*
allaire	coldfusion_server	4.0.1	cpe:2.3:a:allaire:coldfusion_server:4.0.1:::::::*
allaire	coldfusion_server	4.5	cpe:2.3:a:allaire:coldfusion_server:4.5:::::::*
allaire	coldfusion_server	4.5.1	cpe:2.3:a:allaire:coldfusion_server:4.5.1:::::::*

References

marc.info/?l=bugtraq&m=96045469627806&w=2

www.allaire.com/handlers/index.cfm?ID=16122&Method=Full

www.osvdb.org/3399

www.securityfocus.com/bid/1314

exchange.xforce.ibmcloud.com/vulnerabilities/4611

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.023

Percentile

89.7%

JSON

Related for CVE-2000-0538