Vulnerabilities > CVE-2005-2306 - Local Security vulnerability in Macromedia Coldfusion and Jrun
Attack vector
LOCAL Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when under heavy load, causes JRun to assign a duplicate authentication token to multiple sessions, which could allow authenticated users to gain privileges as other users.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |