Published: 01/09/2016 Updated: 04/09/2020

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

CVSS v3 Base Score: 8.6 | Impact Score: 4 | Exploitability Score: 3.9

VMScore: 646

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N

The Office Open XML (OOXML) feature in Adobe ColdFusion 10 before Update 21 and 11 before Update 10 allows remote malicious users to read arbitrary files or send TCP requests to intranet servers via a crafted OOXML spreadsheet containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe coldfusion

''' ============================================= - Discovered by: Dawid Golunski - legalhackerscom - dawid (at) legalhackerscom - CVE-2016-4264 - APSB16-30 - Release date: 31082016 - Severity: Critical ============================================= I VULNERABILITY ------------------------- Adobe ColdFusion <= 11 XML External En ...

Adobe ColdFusion versions 11 and below suffer from an XML external entity (XXE) injection vulnerability ...

fixed https://github.com/BuffaloWill/oxml_xxe/issues/41

oxml_xxe This tool is meant to help test XXE vulnerabilities in OXML document file formats Currently supported: DOCX/XLSX/PPTX ODT/ODG/ODP/ODS SVG XML PDF (experimental) JPG (experimental) GIF (experimental) BH USA 2015 Presentation: Exploiting XXE in File Upload Functionality (Slides) (Recorded Webcast) Blog Posts on the topic: Exploiting XXE Vulnerabilities in OXML Documen

A tool for embedding XXE/XML exploits into different filetypes

oxml_xxe This tool is meant to help test XXE vulnerabilities in OXML document file formats Currently supported: DOCX/XLSX/PPTX ODT/ODG/ODP/ODS SVG XML BH USA 2015 Presentation: Exploiting XXE in File Upload Functionality (Slides) (Recorded Webcast) Blog Posts on the topic: Exploiting XXE Vulnerabilities in OXML Documents Exploiting CVE-2016-4264 With OXML_XXE Installation

CWE-611 https://helpx.adobe.com/security/products/coldfusion/apsb16-30.html http://legalhackers.com/advisories/Adobe-ColdFusion-11-XXE-Exploit-CVE-2016-4264.txt http://www.securitytracker.com/id/1036708 http://www.securityfocus.com/bid/92684 https://www.exploit-db.com/exploits/40346/http://www.securityfocus.com/archive/1/539374/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/40346/https://github.com/laurancelo/oxml_xxe

CVE-2016-4264

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect