CVE-2010-2861 : Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow re

Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepackaging/editarchive.cfm, and (5) enter.cfm in CFIDE/administrator/.

Published 2010-08-11 18:47:51

Updated 2013-09-24 03:39:52

Source Adobe Systems Incorporated

View at NVD, CVE.org

Vulnerability category: Directory traversal

CVE-2010-2861 is in the CISA Known Exploited Vulnerabilities Catalog

This issue is known to have been leveraged as part of a ransomware campaign.

CISA vulnerability name:

Adobe ColdFusion Directory Traversal Vulnerability

CISA required action:

Apply updates per vendor instructions.

CISA description:

A directory traversal vulnerability exists in the administrator console in Adobe ColdFusion which allows remote attackers to read arbitrary files.

Added on 2022-03-25 Action due date 2022-04-15

Exploit prediction scoring system (EPSS) score for CVE-2010-2861

Probability of exploitation activity in the next 30 days: 97.08%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2010-2861

ColdFusion Server Check

First seen: 2020-04-26

auxiliary/scanner/http/coldfusion_locale_traversal

This module attempts to exploit the directory traversal in the 'locale' attribute. According to the advisory the following versions are vulnerable: ColdFusion MX6 6.1 base patches, ColdFusion MX7 7,0,0,91690 base patches, ColdFusion MX8 8,0,1,195765 base

More information

CVSS scores for CVE-2010-2861

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2010-2861

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2010-2861

http://securityreason.com/securityalert/8137

Adobe ColdFusion - Directory Traversal' - CXSecurity.com
http://securityreason.com/securityalert/8148

CXSecurity.com - IT Security News
http://www.adobe.com/support/security/bulletins/apsb10-18.html

Adobe - Security Bulletins: APSB10-18 Security update: Hotfix available for ColdFusion
Vendor Advisory
http://www.gnucitizen.org/blog/coldfusion-directory-traversal-faq-cve-2010-2861/

ColdFusion directory traversal FAQ (CVE-2010-2861)

CVEs referencing this url
http://www.procheckup.com/vulnerability_manager/vulnerabilities/pr10-07

Error404 | ProCheckUp

Products affected by CVE-2010-2861

Adobe » Coldfusion
Versions up to, including, (<=) 9.0.1
cpe:2.3:a:adobe:coldfusion:*:*:*:*:*:*:*:*
Matching versions
Adobe » Coldfusion » Version: 8.0
cpe:2.3:a:adobe:coldfusion:8.0:*:*:*:*:*:*:*
Matching versions
Adobe » Coldfusion » Version: 8.0.1
cpe:2.3:a:adobe:coldfusion:8.0.1:*:*:*:*:*:*:*
Matching versions
Adobe » Coldfusion » Version: 9.0
cpe:2.3:a:adobe:coldfusion:9.0:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2010-2861