Computer Security
[EN] securityvulns.ru no-pyccku


Multiple Macromedia Coldfusion security vulnerabilities
Published:13.09.2006
Source:
SecurityVulns ID:6613
Type:remote
Threat Level:
5/10
Description:DoS, crossite scripting, sandbox escaping.
Affected:ADOBE : Macromedia ColdFusion MX 7
 ADOBE : Macromedia ColdFusion MX 6.1
CVE:CVE-2006-5859 (Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script Protection is not enabled, allows remote attackers to inject arbitrary HTML and web script via unknown vectors, possibly related to Linkdirect.cfm, Topnav.cfm, and Welcomedoc.cfm.)
Original documentdocumentSECUNIA, [SA21858] ColdFusion Error Page Cross-Site Scripting Vulnerability (13.09.2006)
 documentSECUNIA, [SA21866] ColdFusion Denial of Service and Sandbox Bypass (13.09.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod