TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
246
undocumented CFUSION_GETODBCINI() function, could be used by an attacker to gets ODBC data source
information from the registry.
Signature ID: 1820
WEB-COLDFUSION gettempdirectory.cfm access Vulnerability
Threat Level: Information
Industry ID: CVE-1999-0760
Bugtraq: 550
Signature Description: ColdFusion is an application server and software development framework used for the
development of computer software in general, and dynamic web sites. ColdFusion is a similar product to Microsoft
ASP.NET, JavaServer Pages or PHP. ColdFusion Server includes several undocumented CFML tags and functions.
ColdFusion( 2.0, 3.0, 3.0.1, 3.1, 3.1.1, 3.1.2, 4.0, 4.0.1) are vulnerable. Undocumented CFML tags in ColdFusion will
allow an remote attacker to gain unauthorized access to administrative privileges, including registry and advanced
security settings. This rule will triggers when an attempt is made to send cfdocs/snippets/gettempdirectory.cfm pattern.
Upgrade the patches are available from vendors web site.
Signature ID: 1821
WEB-COLDFUSION mainframeset access Vulnerability
Threat Level: Information
Industry ID: CVE-1999-0760 Bugtraq: 550
Signature Description: ColdFusion is an application server and software development framework used for the
development of computer software in general, and dynamic web sites. ColdFusion is a similar product to Microsoft
ASP.NET, JavaServer Pages or PHP. ColdFusion Server includes several undocumented CFML tags and functions.
ColdFusion( 2.0, 3.0, 3.0.1, 3.1, 3.1.1, 3.1.2, 4.0, 4.0.1) are vulnerable. Undocumented CFML tags in ColdFusion will
allow an remote attacker to gain unauthorized access to administrative privileges, including registry and advanced
security settings. This rule will triggers when an attempt is made to send cfdocs/examples/mainframeset.cfm pattern.
Upgrade the patches are available from vendors web site.
Signature ID: 1822
WEB-COLDFUSION onrequestend.cfm access Vulnerability
Threat Level: Information
Industry ID: CVE-2000-0189 CVE-1999-0760 Bugtraq: 550,1021
Signature Description: Allaire ColdFusion is a popular web applications development tool. ColdFusion uses a tag-
based, server scripting language that is ideal for programming web applications. The ColdFusion Markup
Language(CFML) cleanly integrates with HTML(Hyper Text Markup Language) for user interface and XML for data
exchange. ColdFusion Server(ColdFusion versions 4.0, 4.0.1, and 4.5.0) allow remote attacker to determine the real
pathname of the server via an HTTP request to the onrequestend files. Upgrade the latest version of Allaire ColdFusion,
available at vendor's website.
Signature ID: 1823
WEB-COLDFUSION parks access Vulnerability
Threat Level: Information
Industry ID: CVE-1999-0760
Bugtraq: 550
Signature Description: ColdFusion is an application server and software development framework used for the
development of computer software in general, and dynamic web sites. ColdFusion is a similar product to Microsoft
ASP.NET, JavaServer Pages or PHP. ColdFusion Server includes several undocumented CFML tags and functions.
ColdFusion( 2.0, 3.0, 3.0.1, 3.1, 3.1.1, 3.1.2, 4.0, 4.0.1) are vulnerable. Undocumented CFML tags in ColdFusion will
allow an remote attacker to gain unauthorized access to administrative privileges, including registry and advanced
security settings. This rule will triggers when an attempt is made to send cfdocs/examples/parks/detail.cfm pattern.
Upgrade the patches are available from vendors web site.