CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2306

Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when under heavy load, causes JRun to assign a duplicate authentication token to multiple sessions, which could allow authenticated users to gain privileges as other users.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.2%

CVSS Severity

CVSS v2 Score 3.7

References

http://secunia.com/advisories/16081
http://securitytracker.com/id?1014489
http://www.macromedia.com/devnet/security/security_zone/mpsb05-05.html
http://secunia.com/advisories/16081
http://securitytracker.com/id?1014489
http://www.macromedia.com/devnet/security/security_zone/mpsb05-05.html

Products affected by CVE-2005-2306

Macromedia » Coldfusion » Version: 6.1

cpe:2.3:a:macromedia:coldfusion:6.1
Macromedia » Coldfusion » Version: 7.0

cpe:2.3:a:macromedia:coldfusion:7.0
Macromedia » Jrun » Version: 4.0

cpe:2.3:a:macromedia:jrun:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2306

Products

Pricing

Contact Us