Info

Disclosure

Apr 22, 2005

Discovery

Unknown

Dates

Exploit

Apr 22, 2005

Solution

Unknown

Description

Coldfusion contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the requested filename before being returned to users in a 404 HTTP error message. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity and confidentiality.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s): Configuring the server to use an alternative 404 error page.

Products

Macromedia, Inc.

ColdFusion MX

References

Secunia Advisory ID: 15050
CVE ID: 2005-1555 (see also: NVD)
ISS X-Force ID: 20550
Related OSVDB ID: 2578
Vendor URL: http://macromedia.com
Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=111575500403231&w=2
Other Advisory URL: http://osvdb.org/ref/15/15814-coldfusion-xss.txt
Vendor Specific News/Changelog Entry: http://www.macromedia.com/devnet/security/security_zone/mpsb05-03.html

Credit

Dr_insane - dr_insanepathfinder.gr - Personal Page

Direct URL: http://osvdb.org/36218