|
Macromedia ColdFusion MX IIS ISAPI Filter Buffer Overrun Vulnerability
The Macromedia ColdFusion MX IIS ISAPI handler is prone to a remotely exploitable buffer overrun condition. The issue is due to a lack of bounds checking on requested filenames. It is possible to trigger the overrun by requesting a filename (with extension ".cfm") of length 4096 characters or greater. According to Macromedia, an overflow also occurs if the "template filename" is greater than 8092 bytes in length. |
|
|
Privacy Statement |
