Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Macromedia ColdFusion Lets Remote Users Deny Service By Sending Many Form Fields
Categorie: Vulnerability
Posted: 2004-01-30 by ReCall
Views: 374
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: A vulnerability was reported in Macromedia ColdFusion in the processing of form fields. A remote user can cause denial of service conditions on the target system.

It is reported that a remote user can submit a bogus request containing a large number (e.g., several hundred) of form fields to cause ColdFusion MX 6.1 to take an excessive amount of time to process the request.

Macromedia has assigned an "Important" severity rating to this flaw.

Macromedia credits Michael Leahy of Grand Valley State University with reporting this vulnerability.

Impact: A remote user can cause the target ColdFusion service to consume an excessive amount of time processing a malicious request.

Solution: The vendor has released a Form fields DoS patch (19 KB ZIP), available at:


http://download.macromedia.com/pub/security/mpsb04-02.zip

See the vendor's advisory for installation instructions, available at:

http://www.macromedia.com/devnet/security/security_zone/mpsb04-02.html
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=687

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES