Coldfusion@6.1 Security Vulnerabilities and Issues — Coldfusion@6.1 CVE List

Lucene search

MacromediaColdfusion6.1

12 matches found

CVE•added 2005/04/21 4:0 a.m.•63 views

CVE-2004-0928

The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote attackers to bypass authentication and view source files, such as .asp, .pl, and .php files, via an HTTP request that ends in ";.cfm".

5CVSS6.9AI score0.28178EPSS

CVE•added 2004/12/23 5:0 a.m.•49 views

CVE-2004-0646

Buffer overflow in the WriteToLog function for JRun 3.0 through 4.0 web server connectors, such as (1) mod_jrun and (2) mod_jrun20 for Apache, with verbose logging enabled, allows remote attackers to execute arbitrary code via a long HTTP header Content-Type field or other fields.

10CVSS7.8AI score0.70947EPSS

CVE•added 2005/07/19 4:0 a.m.•49 views

CVE-2005-2306

Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when under heavy load, causes JRun to assign a duplicate authentication token to multiple sessions, which could allow authenticated users to gain privileges as other users.

3.7CVSS7.2AI score0.00016EPSS

CVE•added 2005/02/13 5:0 a.m.•43 views

CVE-2004-1478

JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote attackers to perform a session fixation attack and hijack a user's HTTP session.

7.5CVSS6.7AI score0.07163EPSS

CVE•added 2004/06/01 4:0 a.m.•42 views

CVE-2004-0407

The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allows remote attackers to cause a denial of service (disk consumption) by repeatedly uploading files and interrupting the uploads before they finish.

2.6CVSS6.8AI score0.03852EPSS

CVE•added 2005/08/16 4:0 a.m.•41 views

CVE-2004-2331

ColdFusion MX 6.1 and 6.1 J2EE allows local users to bypass sandbox security restrictions and obtain sensitive information by using Java reflection methods to access trusted Java objects without using the CreateObject function or cfobject tag.

5.5CVSS6.6AI score0.00013EPSS

CVE•added 2005/05/10 4:0 a.m.•39 views

CVE-2004-1815

Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote attackers to cause a denial of service (memory consumption).

5CVSS6.7AI score0.08586EPSS

CVE•added 2005/12/19 3:47 a.m.•37 views

CVE-2005-4342

ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote attackers to "bypass security controls," aka "JRun Clustered Sandbox Security Vulnerability."

7.5CVSS7.2AI score0.00986EPSS

CVE•added 2005/12/19 3:47 a.m.•37 views

CVE-2005-4343

Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 allows remote attackers to attach arbitrary files and send mail via a crafted Subject field, which is not properly handled by the CFMAIL tag in applications that use ColdFusion, aka "CFMAIL injection Vulnerability".

5CVSS7.3AI score0.01472EPSS

CVE•added 2005/05/02 4:0 a.m.•34 views

CVE-2005-1022

ColdFusion 6.1 Updater 1 places Java .class files under the web root in the /WEB-INF/cfclasses directory, which allows remote attackers to obtain sensitive information.

5CVSS6.9AI score0.00232EPSS

CVE•added 2005/07/10 4:0 a.m.•31 views

CVE-2004-2204

Macromedia ColdFusion MX 6.0 and 6.1 application server, when running with the CreateObject function or CFOBJECT tag enabled, allows local users to conduct unauthorized activities and obtain administrative passwords by creating CFML scripts that use CreateObject or CFOBJECT.

7.2CVSS6.8AI score0.00012EPSS

CVE•added 2005/08/16 4:0 a.m.•26 views

CVE-2004-2330

ColdFusion MX 6.1 and 6.1 J2EE allows remote attackers to cause a denial of service via an HTTP request containing a large number of form fields.

5CVSS7AI score0.05382EPSS