Adobe ColdFusion CVE-2016-4264 XML External Entity Information Disclosure Vulnerability

Bugtraq ID: 92684
Class: Design Error
CVE: CVE-2016-4264
Remote: Yes
Local: No
Published: Aug 30 2016 12:00AM
Updated: Sep 02 2016 01:00PM
Credit: Dawid Golunski of http://legalhackers.com.
Vulnerable: Adobe ColdFusion 11 Update 9
Adobe ColdFusion 11 Update 8
Adobe ColdFusion 11 Update 7
Adobe ColdFusion 11 Update 6
Adobe ColdFusion 11 Update 5
Adobe ColdFusion 11 Update 4
Adobe ColdFusion 11 Update 3
Adobe ColdFusion 11 Update 2
Adobe ColdFusion 11 Update 1
Adobe ColdFusion 10.0 Update 8
Adobe ColdFusion 10.0 Update 4
Adobe ColdFusion 10.0 Update 3
Adobe ColdFusion 10.0 Update 2
Adobe ColdFusion 10.0 Update 14
Adobe ColdFusion 10.0 Update 11
Adobe ColdFusion 10.0 Update 1
Adobe ColdFusion 10 Update 9
Adobe ColdFusion 10 Update 6
Adobe ColdFusion 10 Update 5
Adobe ColdFusion 10 Update 20
Adobe ColdFusion 10 Update 19
Adobe ColdFusion 10 Update 18
Adobe ColdFusion 10 Update 17
Adobe ColdFusion 10 Update 16
Adobe ColdFusion 10 Update 15
Adobe ColdFusion 10 Update 14
Adobe ColdFusion 10 Update 13
Adobe ColdFusion 10 Update 12
Adobe ColdFusion 10 Update 11
Adobe ColdFusion 10 Update 10
Adobe ColdFusion 10 Update 1
Not Vulnerable: Adobe ColdFusion 11 Update 10
Adobe ColdFusion 10 Update 21


 

Privacy Statement
Copyright 2010, SecurityFocus