HTTP: Adobe ColdFusion CFIDE Authentication Bypass
This signature detects attempts to exploit a known vulnerability in Adobe ColdFusion. A successful attack can lead to authentication bypass and information disclosure.
Extended Description
Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 allows attackers to obtain sensitive information via unspecified vectors, as exploited in the wild in January 2013.
Short Name
HTTP:COLDFUSION:CFIDE-AUTHBYPAS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Adobe Authentication Bypass CFIDE CVE-2013-0625 CVE-2013-0629 CVE-2013-0631 CVE-2013-0632 ColdFusion bid:57164 bid:57165 bid:57330
Release Date
04/22/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3724
False Positive
Unknown
CVSS Score
6.8
10.0
5.0
4.3