Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4344

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-4344
Last Modified 07 Mar 2011 09:28:01
Published 18 Dec 2005 10:47:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-4344

Summary

Adobe (formerly Macromedia) ColdFusion MX 7.0 does not honor when the CFOBJECT /CreateObject(Java) setting is disabled, which allows local users to create an object despite the specified configuration.

Vulnerable Systems

Application

  • Macromedia Coldfusion 7.0


References

BID - 15904

CONFIRM - http://www.macromedia.com/devnet/security/security_zone/mpsb05-14.html

SECTRACK - 1015371

SECUNIA - 18078

VUPEN - ADV-2005-2948


Last Updated: 27 May 2016 10:41:16