Bugtraq mailing list archives
Re: ColdFusion File Upload Exploit (fwd)
From: dleblanc () MINDSPRING COM (David LeBlanc)
Date: Tue, 15 Sep 1998 09:14:38 -0400
At 08:23 PM 9/14/98 -0500, Aleph One wrote:
---------- Forwarded message ---------- Date: Mon, 14 Sep 1998 12:12:23 -0600 From: INFO2000 TECH <colby () INFO2000 NET> To: NTBUGTRAQ () LISTSERV NTBUGTRAQ COM Subject: ColdFusion File Upload Exploit The following message was posted to the Allaire's COLD FUSION forums: By default, on Windows NT installations, the CF function, GetTempDirectory returns C:\WINNT.
Not quite true (from the API docs): The GetTempPath function gets the temporary file path as follows: 1. The path specified by the TMP environment variable. 2. The path specified by the TEMP environment variable, if TMP is not defined. 3. The current directory, if both TMP and TEMP are not defined.
WORKAROUND: Currently, TEMP is correctly set to C:\TEMP as a User Environment Variable, but should also be set as a System Environment Variable.
I agree with this. David LeBlanc dleblanc () mindspring com
Current thread:
- ColdFusion File Upload Exploit (fwd) Aleph One (Sep 14)
- <Possible follow-ups>
- Re: ColdFusion File Upload Exploit (fwd) David LeBlanc (Sep 15)
- Re: ColdFusion File Upload Exploit (fwd) - correction David LeBlanc (Sep 15)