CVE-2005-4342

2005-12-1723:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.007

Percentile

80.8%

JSON

ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote attackers to “bypass security controls,” aka “JRun Clustered Sandbox Security Vulnerability.”

References

secunia.com/advisories/18078

securitytracker.com/id?1015369

www.macromedia.com/devnet/security/security_zone/mpsb05-12.html

www.macromedia.com/devnet/security/security_zone/mpsb05-14.html

www.securityfocus.com/bid/15904

www.vupen.com/english/advisories/2005/2948