Secunia

A vulnerability has been identified in ColdFusion, which can be exploited by malicious people to conduct Cross-Site Scripting attacks against visitors.

The vulnerability is caused due to missing input validation by the default error handlers. This can be exploited by including arbitrary script code in the HTTP "Referer" header field.

Successful exploitation requires that a web site uses the default ColdFusionMX Site-Wide Error Handler page or the default ColdFusionMX Missing Template Handler page.

The vulnerability affects the following versions:
* ColdFusion MX 6.0 and 6.1 (All editions)
* ColdFusion MX 6.0 J2EE (All editions)
* ColdFusion MX 6.1 J2EE (All editions)
* ColdFusion 5.0 and prior versions

Solution
Macromedia has issued patches (see the original advisory for installation instructions).
Further details available in Customer Area

Provided and/or discovered by
Vagabond Co
Robert Fly

Original Advisory
http://www.macromedia.com/devnet/security/security_zone/mpsb03-06.html

Deep Links
Links available in Customer Area