BlueDragon <= 188.8.131.526 Multiple Vulnerabilities
Medium Nessus Network Monitor Plugin ID 3668
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote host is running BlueDragon, a ColdFusion Markup Language server. This version of BlueDragon is vulnerable to a Cross-Site Scripting (XSS) flaw where attackers can inject malicious scripting code that will run within the browser of BlueDragon clients. A second flaw would allow the attacker the ability to crash the application remotely, thereby denying services to legitimate users.
SolutionUpgrade or patch according to vendor recommendations.