Vulnerabilities > CVE-2006-4725 - Unspecified vulnerability in Adobe Coldfusion 7.0/7.0.1

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
adobe

Summary

Adobe ColdFusion MX 7 and 7.01 allows local users to bypass security restrictions and call components (CFC) within a sandbox from CFML templates that are located outside of the sandbox.

Vulnerable Configurations

Part Description Count
Application
Adobe
2