CVE-1999-0477
CVSS 2.0 Score 7.5 of 10 (high)
Details
Published Dec 25, 1999
Updated: Sep 5, 2008
Summary
CVE-1999-0477 is a vulnerability affecting the Expression Evaluator in ColdFusion Application Server. Malicious actors can exploit this issue by uploading files to the server through openfile.cfm, bypassing inadequate access controls. Successful exploitation could result in unauthorized file write access and potential server compromise. This vulnerability was identified in 1999 and posed a significant threat to ColdFusion users until appropriate patches were released.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Allaire