Macromedia ColdFusion MX 6.0 - Error Message Full Path Disclosure

Author: Network Intelligence
type: webapps
platform: cfm
port: 
date_added: 2003-04-26  
date_updated: 2012-11-07  
verified: 1  
codes: CVE-2003-1469;OSVDB-49951  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22544.txt  

source: https://www.securityfocus.com/bid/7443/info

A vulnerability has been reported for Macromedia ColdFusion MX that may reveal the physical path information to attackers.

When certain malformed URL requests are received by the server, an error message is returned containing the full path of the ColdFusion installation.

http://host:8500/CFIDE/probe.cfm