← voltar
CVE-2010-0185

CVE-2010-0185

EPSS 4.3%
The default configuration of Adobe ColdFusion 9.0 does not restrict access to collections that have been created by the Solr Service, which allows remote attackers to obtain collection metadata, search information, and index data via a request to an unspecified URL.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://kb2.adobe.com/cps/807/cpsid_80719.htmlhttp://osvdb.org/62037http://secunia.com/advisories/38387https://exchange.xforce.ibmcloud.com/vulnerabilities/55997http://www.adobe.com/support/security/bulletins/apsb10-04.htmlhttp://www.securityfocus.com/bid/38007http://www.securitytracker.com/id?1023519http://www.vupen.com/english/advisories/2010/0259