Adobe ColdFusion Multiple Vulnerabilities (APSB16-16) (credentialed check)
Critical Nessus Plugin ID 91102
SynopsisA web-based application running on the remote Windows host is affected by multiple vulnerabilities.
DescriptionThe version of Adobe ColdFusion running on the remote Windows host is missing a security hotfix. It is, therefore, affected by multiple vulnerabilities :
- A cross-site scripting vulnerability exists due to improper validation of user-supplied input. An attacker can exploit this to execute arbitrary script code in a user's browser session. (CVE-2016-1113)
- A remote code execution vulnerability exists in the Apache Commons Collections (ACC) library that is triggered during the deserialization of Java Objects. An unauthenticated, remote attacker can exploit this to execute arbitrary code on the target host.
- A flaw exists related to certificate validation due to the server hostname not being verified to match a domain name in the Subject's Common Name (CN) or SubjectAltName field when handling wild card certificates. A man-in-the-middle attacker can exploit this by spoofing the TLS/SSL server via a certificate that appears valid, resulting the disclosure or manipulation of transmitted data. (CVE-2016-1115)
SolutionApply the relevant hotfix as referenced in Adobe Security Bulletin APSB16-16.