tracker issue : CF-4118881

select a category, or use search below
(searches all categories and all time range)
Title:

[AF] - Security Analyiser - does not check <cffile action="delete" >

| View in Tracker

Status/Resolution/Reason: Closed/Withdrawn/NotABug

Reporter/Name(from Bugbase): Aaron Foote / Aaron Foote (Aaron Foote)

Created: 02/17/2016

Components: Security Analyzer

Versions: 2016

Failure Type:

Found In Build/Fixed In Build: CF2016_Final /

Priority/Frequency: Minor / All users will encounter

Locale/System: English / Windows 10 64 bit

Vote Count: 0

As the title suggests.

See securityanalyizer.rules.FileinjectionRule

        if ((t.equalsIgnoreCase("copy")) || (t.equalsIgnoreCase("rename")) || (t.equalsIgnoreCase("move")))

----------------------------- Additional Watson Details -----------------------------

Watson Bug ID:	4118881

External Customer Info:
External Company:  
External Customer Name: Aaron Foote
External Customer Email:  
External Test Config: My Hardware and Environment details:

Attachments:

Comments:

For the file injection vulnerability to be flagged, the Security Analyzer expects the "file" attribute to be present based on whose value, it would flag it as a vulnerability or not. So, since in this case there is no "file" attribute it is not flagging and this would happen for any other "action" as well.
Comment by S P.
4718 | February 22, 2016 03:43:01 AM GMT