Computer Security

Multiple Macromedia Coldfusion security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Multiple Macromedia Coldfusion security vulnerabilities
Published:13.09.2006
Source:BUGTRAQ
SecurityVulns ID:6613
Type:remote
Level:5/10
Description:DoS, crossite scripting, sandbox escaping.
Affected:ADOBE : Macromedia ColdFusion MX 7
 ADOBE : Macromedia ColdFusion MX 6.1
CVE:CVE-2006-5859 (Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script Protection is not enabled, allows remote attackers to inject arbitrary HTML and web script via unknown vectors, possibly related to Linkdirect.cfm, Topnav.cfm, and Welcomedoc.cfm.)
Original documentdocumentSECUNIA, [SA21858] ColdFusion Error Page Cross-Site Scripting Vulnerability (13.09.2006)
 documentSECUNIA, [SA21866] ColdFusion Denial of Service and Sandbox Bypass (13.09.2006)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru