This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
A web-based application running on the remote Windows host is affected
by multiple vulnerabilities.
The version of Adobe ColdFusion running on the remote Windows host is
affected by an unspecified cross-site request forgery (XSRF)
vulnerability and a denial of service (DoS) vulnerably. Versions 8,
8.0.1, 9, and 9.0.1 are affected.
A remote attacker can exploit the XSRF vulnerability by tricking a
user into making a malicious request, resulting in administrative
access. The DoS vulnerability can be exploited to impact availability
in an unspecified manner.
See also :
Apply the relevant hotfixes referenced in the Adobe advisory.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.6
Public Exploit Available : true