← CVECheck
HomeVulnerabilities

CVE-2002-1309 — HIGH severity vulnerability (Heap-based buffer overflow in the error-handling mechanism f)

Heap-based buffer overflow in the error-handling mechanism for the IIS ISAPI handler in Macromedia ColdFusion 6.0 allows remote attackers to execute arbitrary via an HTTP GET request with a long .cfm file name.

CVE IDCVE-2002-1309
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-11-29
Last modified2026-04-16
DescriptionHeap-based buffer overflow in the error-handling mechanism for the IIS ISAPI handler in Macromedia ColdFusion 6.0 allows remote attackers to execute arbitrary via an HTTP GET request with a long .cfm file name.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →