CVE-2005-4343

2005-12-18T22:47:00
ID CVE-2005-4343
Type cve
Reporter NVD
Modified 2011-03-07T21:28:01

Description

Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 allows remote attackers to attach arbitrary files and send mail via a crafted Subject field, which is not properly handled by the CFMAIL tag in applications that use ColdFusion, aka "CFMAIL injection Vulnerability".