Intrusion Prevention



This indicates an attack attempt against an arbitrary File Upload vulnerability in the Adobe ColdFusion.
The vulnerability is caused by an error when the vulnerable software handles a malicious HTTP request with a crafted URI. It allows a remote attacker to upload an arbitrary file via sending a crafted URI to a vulnerable application.

Affected Products

Adobe ColdFusion 10
Adobe ColdFusion 9
Adobe ColdFusion 8
Adobe ColdFusion 7


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's website for suggested solution.