PT-2004-1549 · Adobe · Coldfusion Mx

Published

2004-04-17

Updated

2017-07-11

CVE-2004-0407

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions ColdFusion MX version 6.1

Description The issue concerns the HTML form upload capability, which does not properly reclaim disk space when an upload is interrupted. This allows remote attackers to cause a denial of service by consuming disk space through repeated uploads that are interrupted before completion.

Recommendations For ColdFusion MX version 6.1, consider implementing measures to monitor and limit disk space usage, and ensure proper cleanup of interrupted uploads to prevent denial of service attacks.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-0407

Affected Products

Coldfusion Mx

PT-2004-1549 · Adobe · Coldfusion Mx

CVE-2004-0407

Related Identifiers

Affected Products

References · 8