All categories

Technical Details for CVE-2023-29301: Adobe ColdFusion Access Control Bypass for a CFAdmin Authentication Component

BackgroundIn this post I'll be walking though CVE-2023-29301, which is an access control bypass / password brute force vulnerability in Adobe ColdFusion that I reported to Adobe and was fixed on July 11, 2023 in Adobe Product Security Bulletin APSB23-40.

From: Hoya Haxa - A Security Research Blog

8/30/23, 9:09 AM Coldfusion

On ColdFusion, AES, and Padding Oracle Attacks: Hic Sunt Dracones

TL; DR: If you use AES-CBC (or another block cipher operating in CBC mode) to decrypt user-controlled ciphertext, validate the ciphertext with an HMAC or similar integrity check prior to decryption to avoid Padding Oracle vulnerabilities.

From: Hoya Haxa - A Security Research Blog

7/3/23, 10:20 PM Coldfusion

On ColdFusion, AES, and Padding Oracle Attacks: Hic Sunt Dracones

TL; DR: If you use AES-CBC (or another block cipher operating in CBC mode) to decrypt user-controlled ciphertext, validate the ciphertext with an HMAC or similar integrity check prior to decryption to avoid Padding Oracle vulnerabilities.

From: Hoya Haxa - A Security Research Blog

7/3/23, 10:20 PM Coldfusion

On ColdFusion, AES, and Padding Oracle Attacks: Hic Sunt Dracones

TL; DR: If you use AES-CBC (or another block cipher operating in CBC mode) to decrypt user-controlled ciphertext, validate the ciphertext with an HMAC or similar integrity check prior to decryption to avoid Padding Oracle vulnerabilities.

From: Hoya Haxa - A Security Research Blog

7/3/23, 10:20 PM Coldfusion

Why You Don't Want To Use CFMX_COMPAT Encryption

This is the first of what may be a couple of posts about my presentation from ColdFusion Summit East 2023, which was held in April in Washington, DC.

From: Hoya Haxa - A Security Research Blog

5/12/23, 10:54 PM Coldfusion

Why You Don't Want To Use CFMX_COMPAT Encryption

This is the first of what may be a couple of posts about my presentation from ColdFusion Summit East 2023, which was held in April in Washington, DC.

From: Hoya Haxa - A Security Research Blog

5/12/23, 10:54 PM Coldfusion

Why You Don't Want To Use CFMX_COMPAT Encryption

This is the first of what may be a couple of posts about my presentation from ColdFusion Summit East 2023, which was held in April in Washington, DC.

From: Hoya Haxa - A Security Research Blog

5/12/23, 10:54 PM Coldfusion

Slides from ColdFusion Summit East 2023 - "Codes, Ciphers, and ColdFusion: What They Don't Want You To Know"

I spoke at ColdFusion Summit East 2023 last week.

From: Hoya Haxa - A Security Research Blog

4/10/23, 11:21 AM Coldfusion

Slides from ColdFusion Summit East 2023 - "Codes, Ciphers, and ColdFusion: What They Don't Want You To Know"

I spoke at ColdFusion Summit East 2023 last week.

From: Hoya Haxa - A Security Research Blog

4/10/23, 11:21 AM Coldfusion

Slides from ColdFusion Summit East 2023 - "Codes, Ciphers, and ColdFusion: What They Don't Want You To Know"

I spoke at ColdFusion Summit East 2023 last week.

From: Hoya Haxa - A Security Research Blog

4/10/23, 11:21 AM Coldfusion

Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

BackgroundMura CMS is a popular content management system written in ColdFusion/CFML.

From: Hoya Haxa - A Security Research Blog

3/6/23, 4:00 AM Coldfusion

Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

BackgroundMura CMS is a popular content management system written in ColdFusion/CFML.

From: Hoya Haxa - A Security Research Blog

3/6/23, 4:00 AM Coldfusion

Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

BackgroundMura CMS is a popular content management system written in ColdFusion/CFML.

From: Hoya Haxa - A Security Research Blog

3/6/23, 4:00 AM Coldfusion

Preliminary Security Advisory - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

Update March 6, 2023 - the full security advisory has been posted here: https://hoyahaxa.

From: Hoya Haxa - A Security Research Blog

1/28/23, 3:40 PM Coldfusion

Preliminary Security Advisory - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

Update March 6, 2023 - the full security advisory has been posted here: https://hoyahaxa.

From: Hoya Haxa - A Security Research Blog

1/28/23, 3:40 PM Coldfusion

Preliminary Security Advisory - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

Update March 6, 2023 - the full security advisory has been posted here: https://hoyahaxa.

From: Hoya Haxa - A Security Research Blog

1/28/23, 3:40 PM Coldfusion

Feeds