4.6

CVE-2006-4725

Adobe ColdFusion MX 7 and 7.01 allows local users to bypass security restrictions and call components (CFC) within a sandbox from CFML templates that are located outside of the sandbox.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeColdfusion Version7.0 Editionlinux
AdobeColdfusion Version7.0.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.64% 0.46
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/21866
Patch
Vendor Advisory
http://securitytracker.com/id?1016833
http://www.vupen.com/english/advisories/2006/3574
http://www.adobe.com/support/security/bulletins/apsb06-13.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/19985
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/28920