cf-fullpath
-----------

CVE Number: 
CVE-2000-0189

Details:
Cold Fusion sample scripts were found on the system. Older versions of these
files can be exploited to reveal the full path to the webroot on the server.

Fix:
It is highly recommended that all sample files be removed from the system,
especially on production servers. Always use the latest version of Cold Fusion
along with the latest security patches.

Related URLs:
http://www.allaire.com/security
http://www.securityfocus.com/bid/1021

$Id: cf-fullpath,v 1.1 2000/11/06 15:34:09 loveless Exp $
