Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Macromedia ColdFusion MX before 6.1 does not restrict the size of error messages, which allows remote attackers to cause a denial of service (memory consumption and crash) by sending repeated GET or POST requests that trigger error messages that use long strings of data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Macromedia ColdFusion MX超大错误消息远程拒绝服务漏洞
Vulnerability Description
Macromedia ColdFusion MX Server是一款强大的WEB应用服务程序,可以自动建立站点和WEB应用程序。 Macromedia ColdFusion MX在写超大错误消息时存在问题,远程攻击者可以利用这个漏洞对服务器进程拒绝服务攻击。 当ColdFusion MX服务器写带有超长字符串的错误消息到日志时,服务器内存使用会暴涨,并且直到服务器完成对此错误消息的写入操作。如果攻击者重复产生此消息,就可以消耗大量内存而造成拒绝服务。 要完成此漏洞,攻击者必须在处理CFM页面时产生错误,通
CVSS Information
N/A
Vulnerability Type
N/A