CVE-2003-1469 Information

Description

The default configuration of ColdFusion MX has the \Enable Robust Exception Information\ option selected which allows remote attackers to obtain the full path of the web server via a direct request to CFIDE/probe.cfm which leaks the path in an error message.

Reference

http://securityreason.com/securityalert/3307 http://www.nii.co.in/vuln/pdmac.html http://www.securityfocus.com/archive/1/319867 http://www.securityfocus.com/bid/7443 https://exchange.xforce.ibmcloud.com/vulnerabilities/11879