ColdFusion Vulnerability Scanner

Overview

Vendor Description

Will run down a list of words / domain names, and scan each one for an Allaire ColdFusion misconfiguration. A server can easily be rooted after finding such a hole.

Category

Port Scanner: In hacker reconnaissance, a port scan attempts to connect to all 65536 ports on a machine in order to see if anybody is listening on those ports. Ports scans are not illegal in many places, in part because they don't actually compromise the system, in part because they can easily be spoofed, so it is hard to prove guilt, and in part because virtually any machine on the Internet can be induced to scan another machine. Many people think that port scanning is an overt hostile act and should be made illegal. An attacker will often sweep thousands (or millions) of machines rather than a single machine looking for any system that might be vulnerable. Port scans are always automated through tools called Port Scanners.

Origins

Author

Icos

Date of Origin

February, 2000

Detection and Removal

Manual Removal

Follow these steps to remove ColdFusion Vulnerability Scanner from your machine. Begin by backing up your registry and your system, and/or setting a Restore Point, to prevent trouble if you make a mistake.

Stop Running Processes:

Kill these running processes with Task Manager:

Remove Files:

Remove these files (if present) with Windows Explorer:

CodeThief2.2 CodeThiefDeluxe3.5 CodenameAlvin CoderDialer Cof1.0 ColdFusionVulnerabilityScanner ColdFusionWebApplicationServerDoSAttack ColdLife ColdLife4.1.0.0 ColdLimitPasswordStealer