Adobe ColdFusion "filename" Arbitrary File Disclosure
Adobe ColdFusion "filename" Arbitrary File Disclosure Vulnerability
Release Date : 2013-05-13
Criticality level : Moderately critical
Impact : Exposure of sensitive information
Where : From remote
Solution Status : Unpatched
Software: Adobe ColdFusion 10.x
Adobe ColdFusion 9.x
A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious people to disclose potentially sensitive information.
Input passed via the "filename" parameter to administrator/mail/download.cfm in the CFIDE/adminapi section is not properly verified before being used to access files. This can be exploited to disclose the contents of arbitrary files on the server via directory traversal sequences.
Successful exploitation requires that access to the CFIDE/administrator, CFIDE/adminapi, and CFIDE/gettingstarted directories is not restricted.
The vulnerability is reported in versions 10, 9.0.2, 9.0.1, and 9.0 for Windows, Macintosh, and UNIX.
No official solution is currently available. As a workaround, restrict access to the CFIDE/administrator, CFIDE/adminapi, and CFIDE/gettingstarted directories. Please see the vendor's advisory for details. The vendor is planning to release a hotfix for versions 10, 9.0.2, 9.0.1, and 9.0 for Windows, Macintosh, and UNIX on May 14, 2013.
Provided and/or discovered by:
Was this reply helpful? (0) (0)