CVE-2005-4345

2005-12-1723:00:00

mitre

www.cve.org

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

30.4%

JSON

Adobe (formerly Macromedia) ColdFusion MX 7.0 exposes the password hash of the Administrator in an API call, which allows local developers to obtain the hash and gain privileges.

References

secunia.com/advisories/18078

securitytracker.com/id?1015371

www.macromedia.com/devnet/security/security_zone/mpsb05-14.html

www.securityfocus.com/bid/15904

www.vupen.com/english/advisories/2005/2948