← back
CVE-2004-2505

CVE-2004-2505

EPSS 3.2%
Macromedia ColdFusion MX before 6.1 does not restrict the size of error messages, which allows remote attackers to cause a denial of service (memory consumption and crash) by sending repeated GET or POST requests that trigger error messages that use long strings of data.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/24013unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2004-04/0184.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/15895http://www.securityfocus.com/bid/10163