SB2013010401 - Multiple vulnerabilities in Adobe ColdFusion 

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2013010401

SB2013010401 - Multiple vulnerabilities in Adobe ColdFusion

Published: January 4, 2013 Updated: January 13, 2017

Security Bulletin ID SB2013010401
Severity
Critical
Patch available
YES
Number of vulnerabilities 4
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Critical 50% Medium 50%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 4 secuirty vulnerabilities.


1) Authentication bypass (CVE-ID: CVE-2013-0632)

The vulnerability allows a remote attacker to bypass authentication and gain unauthorized access to vulnerable system.

The vulnerability exists due to an error within administrator.cfc. A remote unauthenticated attacker can access Adobe ColdFusion application using a default empty password, login to the RDS component and leverage this session to access administrative web interface.

Successful exploitation of this vulnerability results in unauthorized access to Adobe ColdFusion.

Note: the vulnerability was being actively exploited.

2) Information disclosure (CVE-ID: CVE-2013-0631)

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists due to improper access control. A remote attacker can gain access to important data.

Note: the vulnerability was being actively exploited.

3) Authentication bypass (CVE-ID: CVE-2013-0629)

The vulnerability allows a remote attacker to bypass authentication.

The vulnerability exists due to an error in authentication process, when a password is not configured. A remote unauthenticated attacker can gain unauthorized access to restricted directories.

Successful exploitation of this vulnerability results in unauthorized gaining access to the directories.

Note: the vulnerability was being actively exploited.

4) Authentication bypass (CVE-ID: CVE-2013-0625)

The vulnerability allows a remote attacker to bypass authentication and execute arbitrary code on the target system.

The vulnerability exists due to improper authentication, when password is not configured. A remote unauthenticated attacker can bypass authentication process and execute arbitrary code on the target system.

Note: the vulnerability was being actively exploited.


Remediation

Install update from vendor's website.

References