Intrusion Prevention

HTTP.Coldfusion.Administrator.Probe

Description

It indicates a possible exploit of a Denial of Service vulnerability in Coldfusion.

Coldfusion Administrator will hang if a user attempts to login using an overly long login password.

Affected Products

All Allaire ColdFusion Server versions between 2.0 - 4.5.1 are vulnerable.

Impact

Denial of Service

Recommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

CVE References

CVE-2000-0538