> I do not see how one unfiltered URL data in a CFML > page can exploit the machine?
There are plenty of people who'd be happy to demonstrate it to you, I'm sure. Google "SQL injection" and read all about SQL injection attacks, if you're interested. The end goal of a typical SQL injection attack is to automate an outbound process, often an FTP client, to fetch useful tools onto the compromised server. If your web server has any vulnerabilities, they might be exploited in a very similar way. I did a very simple demonstration of this at last year's Devcon, using a well-known IIS 5 vulnerability and a couple of batch files to automate the process. Again, the thing to remember is that this is all traffic to legitimate open ports on your machine. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 fax: (202) 797-5444 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
