Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Adobe ColdFusion拒绝服务漏洞
Vulnerability Description
Adobe ColdFusion是美国奥多比(Adobe)公司的一款动态Web服务器产品,其运行的CFML(ColdFusion Markup Language)是针对Web应用的一种程序设计语言。 Adobe ColdFusion 8.0版本, 8.0.1版本, 9.0版本及9.0.1版本中存在漏洞,该漏洞源于计算form参数的哈希值时没有限制去触发可预测的哈希碰撞的能力。远程攻击者可通过发送多个特制参数导致拒绝服务(CPU消耗)。
CVSS Information
N/A
Vulnerability Type
N/A