VULHUB ™

Allaire Macromedia ColdFusion is a web application server. This issue impacts versions of ColdFusion for the Microsoft Windows family of operating systems. An issue has been discovered in ColdFusion Server, which could enable a remote user to reveal sensitive system information. Submitting a web request for DOS-device with a non-existant .cfm or .dbm file extension, will cause the ColdFusion host to return an error message containing the path to the web root.

Allaire Macromedia ColdFusion is a web application server. This issue impacts versions of ColdFusion for the Microsoft Windows family of operating systems. An issue has been discovered in ColdFusion Server, which could enable a remote user to reveal sensitive system information. Submitting a web request for DOS-device with a non-existant .cfm or .dbm file extension, will cause the ColdFusion host to return an error message containing the path to the web root.