Update Protection against Adobe ColdFusion Server Double-Encoded Null Character Information Disclosure Vulnerability (APSB09-12)
| Check Point Reference: | CPAI-2009-189 | |
| Date Published: | ||
| Severity: | ||
| Source: | Adobe vulnerability identifier: APSB09-12 | |
| Industry Reference(s): | CVE-2009-1876 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Adobe ColdFusion 8.0.1 and earlier | ||
| Vulnerability Description An information disclosure vulnerability has been discovered in Adobe ColdFusion server. Adobe ColdFusion is an application server for developing dynamically generated Web sites. A remote attacker could exploit this issue to obtain sensitive information. |
||
|
Update/Patch Available Apply Hotfix: Adobe vulnerability identifier: APSB09-12 |
|
|
Vulnerability Details The vulnerability is due to a double-encoded null character issue in the Adobe ColdFusion server. A remote attacker could trigger this issue via a specially crafted HTTP request. Successful exploitation might allow the attacker to gain access to the source code to files on the server. |
Protection Overview
This protection will detect and block attempts to exploit this vulnerability.
Note: If your ColdFusion server is configured to listen on a port other than 80, make sure to define this port as an HTTP service.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.