Adobe (formerly Macromedia) ColdFusion MX 7.0 does not honor when the CFOBJECT /CreateObject(Java) setting is disabled, which allows local users to create an object despite the specified configuration.
References
| Link | Resource |
|---|---|
| http://secunia.com/advisories/18078 | Patch Vendor Advisory |
| http://securitytracker.com/id?1015371 | Patch Vendor Advisory |
| http://www.macromedia.com/devnet/security/security_zone/mpsb05-14.html | Patch |
| http://www.securityfocus.com/bid/15904 | Patch |
| http://www.vupen.com/english/advisories/2005/2948 | |
| http://secunia.com/advisories/18078 | Patch Vendor Advisory |
| http://securitytracker.com/id?1015371 | Patch Vendor Advisory |
| http://www.macromedia.com/devnet/security/security_zone/mpsb05-14.html | Patch |
| http://www.securityfocus.com/bid/15904 | Patch |
| http://www.vupen.com/english/advisories/2005/2948 |
Configurations
History
21 Nov 2024, 00:04
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://secunia.com/advisories/18078 - Patch, Vendor Advisory | |
| References | () http://securitytracker.com/id?1015371 - Patch, Vendor Advisory | |
| References | () http://www.macromedia.com/devnet/security/security_zone/mpsb05-14.html - Patch | |
| References | () http://www.securityfocus.com/bid/15904 - Patch | |
| References | () http://www.vupen.com/english/advisories/2005/2948 - |
Information
Published : 2005-12-19 03:47
Updated : 2024-11-21 00:04
NVD link : CVE-2005-4344
Mitre link : CVE-2005-4344
CVE.ORG link : CVE-2005-4344
JSON object : View
Products Affected
macromedia
- coldfusion
CWE