Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

ColdFusion <= 7,0,2,142559 Local Privilege Escalation

Medium

Synopsis

The remote host is vulnerable to a flaw that allows for the bypassing of authentication.

Description

The remote host is running Macromedia ColdFusion, a web application server. This version of Macromedia is vulnerable to a flaw where a user with local system access can bypass authentication and gain administrative access over the application. Successful exploitation impacts confidentiality, integrity, and availability.

Solution

Upgrade to version 7,0,2,142559 or higher.