ColdFusion contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker specifies the OpenFilePath variable in the Expression Evaluator. This allows an attacker to view the contents of arbitrary files on the server and may result in a loss of confidentiality.

Upgrade to version 4.0.1 or higher, as it has been reported to fix this vulnerability. Additionally, the vendor has released a patch for Windows NT and Solaris installation to address this issue, or users may opt to apply the following workaround: remove all sample code from the server.

• Bugtraq ID: 115
• ISS X-Force ID: 1740
• Exploit Database: 19093
• CVE ID: 1999-0455 (see also: NVD)
• Related OSVDB ID: 50620
• Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999_2/0216.html
• Other Advisory URL: http://wiretrip.net/rfp/txt/phrack54.txt
• Vendor Specific Advisory URL: http://www.adobe.com/devnet/security/security_zone/asb99-01.html
  http://www.macromedia.com/devnet/security/security_zone/asb99-01.html
• Generic Exploit URL: http://www.phrack.org/phrack/54/P54-08 [ Link is 404 ]

• Rain Forest Puppy