Information Disclosure Vulnerability in Microsoft XML Core Services
A vulnerability exists in how the XMLHTTP control applies Microsoft Internet Explorer (IE) security-zone settings to a redirected data stream that XMLHTTP returns as a response to a request for data from a website. An attacker can exploit this problem and specify a datasource on the user's local system.
Microsoft has provided a bulletin and a patch.
Information Disclosure Vulnerability in Microsoft XML Core Services
Latest ColdFusion Talk (CF-Talk)
- cf8 enterprise failover
- cfthread running condition?
- Listing then Deleting Duplicates
- CF8 Dedicated server recommendations
- Details on CF9's "free for academic" licensing?
- Can I Use This CFScript Like This?
- Accessing Sharepoint file
- Pre-filling FileField Values
- cfcalendar and multiple dates
- (ot) How do you preload a SWF file?
Latest ColdFusion Jobs (CF-Jobs)
- ColdFusion MX 7 Server Consultant in/around Hoboken, NJ
- Part Time Coding Job
- Sr ColdFusion Developer Available
- Cold Fusion Flex Developer - PA
- North Bay Application Developer Search
- Contract to HIRE Cold Fusion Developer needed in Wake Forest NC
- Please post this Cold Fusion opportunity Thanks
- ColdFusion Developer - Northern California
- ColdFusion Web Developer - Baltimore, MD
- ColdFusion Web Developer
Want a number like 800-ColdFusion?
My Toll Free 800 Number provides a vanity phone number service to clients who want more than just digits. How would you like 800-coldfusion?