Its just a mapping, once removed the vulnerability is gone.
>From: Dave Watts <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: CF-Talk <[EMAIL PROTECTED]>
>Subject: RE: Amazon using CF
>Date: Thu, 14 Dec 2000 21:12:21 -0500
>
> > Yep. One bug recently found in IIS+CF give source code of any
> > *.cfm. AFAIK many websites on CF can be broken very easily then.
>
>That's not a CF bug, it's an IIS bug. The script reading exploits will work
>with any scripting language used on IIS.
>
>Dave Watts, CTO, Fig Leaf Software
>http://www.figleaf.com/
>voice: (202) 797-5496
>fax: (202) 797-5444
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
