VULHUB ™

The Macromedia ColdFusion MX IIS ISAPI handler is prone to a remotely exploitable buffer overrun condition. The issue is due to a lack of bounds checking on requested filenames. It is possible to trigger the overrun by requesting a filename (with extension ".cfm") of length 4096 characters or greater. According to Macromedia, an overflow also occurs if the "template filename" is greater than 8092 bytes in length.

The Macromedia ColdFusion MX IIS ISAPI handler is prone to a remotely exploitable buffer overrun condition. The issue is due to a lack of bounds checking on requested filenames. It is possible to trigger the overrun by requesting a filename (with extension ".cfm") of length 4096 characters or greater. According to Macromedia, an overflow also occurs if the "template filename" is greater than 8092 bytes in length.