1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Adobe ColdFusion Directory Traversal Vulnerability

Known Exploited Vulnerabilities CVE-2010-2861 Mappings

Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepackaging/editarchive.cfm, and (5) enter.cfm in CFIDE/administrator/.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2010-2861 Adobe ColdFusion Directory Traversal Vulnerability secondary_impact T1119 Automated Collection
Comments
This is the exploitation of a public facing server. In-the-wild reporting documents that exploitation of this vulnerability was used to install a webshell on the victim machine, and then captured and exfiltrated client credit card information.
References
  1. https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/coldfusion-admin-compromise-analysis-cve-2010-2861/
CVE-2010-2861 Adobe ColdFusion Directory Traversal Vulnerability primary_impact T1105 Ingress Tool Transfer
Comments
This is the exploitation of a public facing server. In-the-wild reporting documents that exploitation of this vulnerability was used to install a webshell on the victim machine, and then captured and exfiltrated client credit card information.
References
  1. https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/coldfusion-admin-compromise-analysis-cve-2010-2861/
CVE-2010-2861 Adobe ColdFusion Directory Traversal Vulnerability exploitation_technique T1190 Exploit Public-Facing Application
Comments
This is the exploitation of a public facing server. In-the-wild reporting documents that exploitation of this vulnerability was used to install a webshell on the victim machine, and then captured and exfiltrated client credit card information.
References
  1. https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/coldfusion-admin-compromise-analysis-cve-2010-2861/