SECUNIA ADVISORY ID: SA23668

VERIFY ADVISORY: http://secunia.com/advisories/23668/

CRITICAL: Moderately critical

IMPACT: Exposure of sensitive information

SOFTWARE: Adobe ColdFusion MX 7.x - http://secunia.com/product/4984/

DESCRIPTION: Inge Henriksen has reported a vulnerability in Adobe ColdFusion MX, which can be exploited by malicious people to disclose potentially sensitive information.

The vulnerability is caused due to an input validation error when processing URL-encoded file names. This can be exploited to view arbitrary files on the web root via a specially crafted URL with a doubly-encoded NULL byte and an extension that is handled by ColdFusion e.g. ".cfm". The vulnerability is reported in version 7.0.2 running on Windows IIS. Other versions may also be affected.

SOLUTION: Apply hotfix (See vendor's advisory for details).

PROVIDED AND/OR DISCOVERED BY: Discovered by Inge Henriksen and reported via iDefense Labs.

ORIGINAL ADVISORY: Adobe: http://www.adobe.com/support/security/bulletins/apsb07-02.html

iDefense Labs: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=466