Title:
Bug 83739:Any tag that writes a header, for example cfheader, cfcontent, cfmail, cfmailpart, cfmailparam should not allow CRLF characters because that allows the creation of an additional header
| View in TrackerStatus/Resolution/Reason: Closed/Fixed/
Reporter/Name(from Bugbase): Peter Freitag / Peter Freitag (Peter Freitag)
Created: 08/02/2010
Versions: 9.0
Failure Type: Unspecified
Found In Build/Fixed In Build: 0000 / 276482
Priority/Frequency: Normal / Unknown
Locale/System: English / Platforms All
Vote Count: 12
Problem:
Any tag that writes a header, for example cfheader, cfcontent, cfmail, cfmailpart, cfmailparam should not allow CRLF characters because that allows the creation of an additional header. There should not be any reason for these tags to create subheaders. One especially important place to fix this is in the subject attribute of cfmail.
Method:
example.cfm?type=html%0D%0ARefresh:0;url=http://foundeo.comexample.cfm:<cfheader name="Content-Type" value="text/#url.type#">
Result:
Strip CRLF from tags that write protocol headers to prevent CRLF injection.
----------------------------- Additional Watson Details -----------------------------
Watson Bug ID: 3041850
External Customer Info:
External Company:
External Customer Name: Peter Freitag
External Customer Email: 735D4A6E43D50B6B992016B8
External Test Config: 08/02/2010Attachments:
Comments: