CVE-2001-1427
CVSS7.5
发布时间 :2001-07-11 00:00:00
修订时间 :2008-09-05 16:26:31
NMCOS    

[原文]Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors.


[CNNVD]Allaire ColdFusion模板覆盖漏洞(CNNVD-200107-071)

        ColdFusion Server 2.0到4.5.1 SP2版本存在未知漏洞。远程攻击者可以借助未知攻击向量覆盖具有零字节文件的模板。

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:macromedia:coldfusion:4.0.1Macromedia ColdFusion Server 4.0.1
cpe:/a:macromedia:coldfusion:4.5.1:sp2Macromedia ColdFusion Server 4.5.1 SP2
cpe:/a:macromedia:coldfusion:4.5.1Macromedia ColdFusion Server 4.5.1
cpe:/a:macromedia:coldfusion:4.5Macromedia ColdFusion 4.5 Enterprise
cpe:/a:macromedia:coldfusion:3.1.1Macromedia ColdFusion Server 3.1.1
cpe:/a:macromedia:coldfusion:4.5.1:sp1Macromedia ColdFusion Server 4.5.1 SP1
cpe:/a:macromedia:coldfusion:3.1Macromedia ColdFusion Server 3.1
cpe:/a:macromedia:coldfusion:3.0.1Macromedia ColdFusion Server 3.0.1
cpe:/a:macromedia:coldfusion:3.0Macromedia ColdFusion Server 3.0
cpe:/a:macromedia:coldfusion:3.1.2Macromedia ColdFusion Server 3.1.2
cpe:/a:macromedia:coldfusion:4.0Macromedia ColdFusion Server 4.0
cpe:/a:macromedia:coldfusion:2.0Macromedia ColdFusion Server 2.0

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1427
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2001-1427
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200107-071
(官方数据源) CNNVD

- 其它链接及资源

http://www.kb.cert.org/vuls/id/321475
(PATCH)  CERT-VN  VU#321475
http://www.securityfocus.com/bid/3023
(PATCH)  BID  3023
http://www.macromedia.com/devnet/security/security_zone/mpsb01-07.html
(PATCH)  CONFIRM  http://www.macromedia.com/devnet/security/security_zone/mpsb01-07.html
http://xforce.iss.net/xforce/xfdb/6840
(UNKNOWN)  XF  coldfusion-overwrite-template(6840)

- 漏洞信息

Allaire ColdFusion模板覆盖漏洞
高危 未知
2001-07-11 00:00:00 2005-10-20 00:00:00
远程  
        ColdFusion Server 2.0到4.5.1 SP2版本存在未知漏洞。远程攻击者可以借助未知攻击向量覆盖具有零字节文件的模板。

- 公告与补丁

        The vendor has released patches which address this issue. Please read the FAQ for instructions on how to install the patches:
        http://www.allaire.com/handlers/index.cfm?id=21579
        Allaire ColdFusion Server 3.1.1
        
        Allaire ColdFusion Server 4.0
        
        Allaire ColdFusion Server 4.0.1
        
        Allaire ColdFusion Server 4.5
        
        Allaire ColdFusion Server 4.5.1
        
        Allaire ColdFusion Server 4.5.1 SP1
        

- 漏洞信息

16645
ColdFusion Server Unspecified Arbitrary File Overwrite DoS
Denial of Service
Loss of Availability

- 漏洞描述

Unknown or Incomplete

- 时间线

2001-07-11 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Allaire ColdFusion Template Overwrite Vulnerability
Unknown 3023
Yes No
2001-07-11 12:00:00 2009-07-11 06:56:00
This vulnerability was submitted to BugTraq in a Macromedia Product Security Bulletin on July 11th, 2001.

- 受影响的程序版本

Allaire ColdFusion Server 4.5.1 SP2
Allaire ColdFusion Server 4.5.1 SP1
Allaire ColdFusion Server 4.5.1
Allaire ColdFusion Server 4.5
- Cobalt Linux 5.0
- Cobalt Linux 5.0
- HP HP-UX 11.0
- HP HP-UX 11.0
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- RedHat Linux 7.0
- RedHat Linux 7.0
- S.u.S.E. Linux 7.0
- S.u.S.E. Linux 7.0
- Sun Solaris 8_sparc
- Sun Solaris 8_sparc
Allaire ColdFusion Server 4.0.1
Allaire ColdFusion Server 4.0
Allaire ColdFusion Server 3.1.2
Allaire ColdFusion Server 3.1.1
Allaire ColdFusion Server 3.1
Allaire ColdFusion Server 3.0.1
Allaire ColdFusion Server 3.0
Allaire ColdFusion Server 2.0
Allaire ColdFusion Server 5.0
- Cobalt Linux 5.0
- HP HP-UX 11.0
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- RedHat Linux 7.0
- S.u.S.E. Linux 7.0
- Sun Solaris 8_sparc

- 不受影响的程序版本

Allaire ColdFusion Server 5.0
- Cobalt Linux 5.0
- HP HP-UX 11.0
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- RedHat Linux 7.0
- S.u.S.E. Linux 7.0
- Sun Solaris 8_sparc

- 漏洞讨论

Allaire ColdFusion is a web application server. It supports quick development, publication and management of web content.

A security issue is known to exist with Allaire ColdFusion.
This issue allows attackers to corrupt the data in template files by creating a new file with the same name as an existing template. The created file will be zero bytes.

This issue may be exploitable by remote attackers who have access to the host.

At this point, very little is known about the nature of this vulnerability. Updates will be published as more information becomes available.

- 漏洞利用

Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.

- 解决方案

The vendor has released patches which address this issue. Please read the FAQ for instructions on how to install the patches:

http://www.allaire.com/handlers/index.cfm?id=21579


Allaire ColdFusion Server 3.1.1

Allaire ColdFusion Server 4.0

Allaire ColdFusion Server 4.0.1

Allaire ColdFusion Server 4.5

Allaire ColdFusion Server 4.5.1

Allaire ColdFusion Server 4.5.1 SP1

Allaire ColdFusion Server 4.5.1 SP2

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站