ColdFusion <= 7,0,2,142559 Local Privilege Escalation
Medium Nessus Network Monitor Plugin ID 3792
SynopsisThe remote host is vulnerable to a flaw that allows for the bypassing of authentication.
DescriptionThe remote host is running Macromedia ColdFusion, a web application server. This version of Macromedia is vulnerable to a flaw where a user with local system access can bypass authentication and gain administrative access over the application. Successful exploitation impacts confidentiality, integrity, and availability.
SolutionUpgrade to version 7,0,2,142559 or higher.