« In Labs: Flash Lite 2.1 for Windows Mobile 5.0 | Main | ColdFusion MX: Cross-site scripting vulnerability in forms »
September 12, 2006
ColdFusion Sandbox Security vulnerability
(Security bulletin) Under certain circumstances, CFML templates outside a sandbox can call components (CFC) within a sandbox.
Posted by dmorris at September 12, 2006 11:54 AM
Related Entries
- Multiple Vulnerabilities in Adobe Flash Player 8.0.24.0 and Earlier Versions
- MPSB05-12 Sandbox Security and CFMAIL Vulnerability in ColdFusion MX 6.X
- MPSB05-10 Security Patch for Insufficient Validation in Breeze Communication Server and Breeze Live Server
- MPSB05-09 Security Patch for Insufficient Validation in Flash Communication Server
- MPSB05-08 Contribute Publishing Server Password Encryption