CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
96.9%
Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote attackers to cause a denial of service (memory consumption).
Vendor | Product | Version | CPE |
---|---|---|---|
macromedia | coldfusion | 6.0 | cpe:2.3:a:macromedia:coldfusion:6.0:*:*:*:*:*:*:* |
macromedia | coldfusion | 6.1 | cpe:2.3:a:macromedia:coldfusion:6.1:*:*:*:*:*:*:* |
macromedia | jrun | 4.0 | cpe:2.3:a:macromedia:jrun:4.0:*:*:*:*:*:*:* |
macromedia | jrun | 4.0 | cpe:2.3:a:macromedia:jrun:4.0:sp1:*:*:*:*:*:* |
macromedia | jrun | 4.0 | cpe:2.3:a:macromedia:jrun:4.0:sp1a:*:*:*:*:*:* |
macromedia | jrun | 4.0_build_61650 | cpe:2.3:a:macromedia:jrun:4.0_build_61650:*:*:*:*:*:*:* |
sun | one_application_server | 7.0 | cpe:2.3:a:sun:one_application_server:7.0:*:platform:*:*:*:*:* |
sun | one_application_server | 7.0 | cpe:2.3:a:sun:one_application_server:7.0:*:standard:*:*:*:*:* |
sun | one_application_server | 7.0 | cpe:2.3:a:sun:one_application_server:7.0:ur1:platform:*:*:*:*:* |
sun | one_application_server | 7.0 | cpe:2.3:a:sun:one_application_server:7.0:ur1:standard:*:*:*:*:* |