Adobe.ColdFusion.logintowizard.cfm.XSS

Release Date May 13, 2010
Severity medium
Impact System compromise Information disclosure
Description This indicates an attack attempt against a cross-site scripting vulnerability in Adobe ColdFusion. The vulnerability exists in the ColdFusion Administrator page. An attacker may exploit this to execute arbitrary code.
Affected Products ColdFusion 8.0, 8.0.1, 9.0 and earlier versions
Recommended Actions Apply the patch supplied by the vendor: http://www.adobe.com/support/security/bulletins/apsb10-11.html
Coverage IPS VCM
Common Vulnerabilities and Exposures (CVE) CVE-2010-1293
Reference/s http://www.adobe.com/support/security/bulletins/apsb10-11.html

Fortinet