Slide 20
Slide 20 text
CVE-2016-4264: ColdFusion
Framework v11 XXE
• Description:
• The Office Open XML (OOXML) feature in Adobe ColdFusion 10 before Update
21 and 11 before Update 10 allows remote attackers to read arbitrary files or
send TCP requests to intranet servers via a crafted OOXML spreadsheet
containing an external entity declaration in conjunction with an entity
reference, related to an XML External Entity (XXE) issue.
• What is OOXML?
• Office Open XML is a zipped, XML-based file format developed by Microsoft
for representing spreadsheets, charts, presentations and word processing
documents. The format was initially standardized by Ecma, and by the ISO
and IEC in later versions.
• Office New File Format:
• After Office 2003 all the files (docx, xlsx, pptx, etc) are based in XML.