Computer Security
[EN] no-pyccku

Multiple Macromedia Coldfusion security vulnerabilities
SecurityVulns ID:6613
Threat Level:
Description:DoS, crossite scripting, sandbox escaping.
Affected:ADOBE : Macromedia ColdFusion MX 7
 ADOBE : Macromedia ColdFusion MX 6.1
CVE:CVE-2006-5859 (Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script Protection is not enabled, allows remote attackers to inject arbitrary HTML and web script via unknown vectors, possibly related to Linkdirect.cfm, Topnav.cfm, and Welcomedoc.cfm.)
Original documentdocumentSECUNIA, [SA21858] ColdFusion Error Page Cross-Site Scripting Vulnerability (13.09.2006)
 documentSECUNIA, [SA21866] ColdFusion Denial of Service and Sandbox Bypass (13.09.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod