ColdFusion Administrative Interface Authentication Bypass
High Nessus Network Monitor Plugin ID 3702
SynopsisThe remote host is vulnerable to a flaw that allows for the bypassing of authentication.
DescriptionThe remote host is running Macromedia ColdFusion, a web application server. This version of Macromedia is vulnerable to a flaw where an unauthenticated user can bypass authentication and gain administrative access over the application. Successful exploitation impacts confidentiality, integrity and availability.
SolutionUpgrade to a version higher than 7,0,2,142559.