Adobe ColdFusion Multiple Vulnerabilities (APSB16-16) (credentialed check)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

A web-based application running on the remote Windows host is affected
by multiple vulnerabilities.

Description :

The version of Adobe ColdFusion running on the remote Windows host is
missing a security hotfix. It is, therefore, affected by multiple
vulnerabilities :

- A cross-site scripting vulnerability exists due to
improper validation of user-supplied input. An attacker
can exploit this to execute arbitrary script code in a
user's browser session. (CVE-2016-1113)

- A remote code execution vulnerability exists in the
Apache Commons Collections (ACC) library that is
triggered during the deserialization of Java Objects. An
unauthenticated, remote attacker can exploit this to
execute arbitrary code on the target host.
(CVE-2016-1114)

- A flaw exists related to certificate validation due to
the server hostname not being verified to match a domain
name in the Subject's Common Name (CN) or SubjectAltName
field when handling wild card certificates. A
man-in-the-middle attacker can exploit this by spoofing
the TLS/SSL server via a certificate that appears valid,
resulting the disclosure or manipulation of transmitted
data. (CVE-2016-1115)

See also :

https://helpx.adobe.com/security/products/coldfusion/apsb16-16.html
http://www.nessus.org/u?e0204f30

Solution :

Apply the relevant hotfix as referenced in Adobe Security Bulletin
APSB16-16.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 91102 ()

Bugtraq ID: 90506
90507
90514

CVE ID: CVE-2016-1113
CVE-2016-1114
CVE-2016-1115

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now