Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
macromedia vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-4343
Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 allows remote malicious users to attach arbitrary files and send mail via a crafted Subject field, which is not properly handled by the CFMAIL tag in applications that use ColdFusion, aka "CFMAIL inje...
Macromedia Coldfusion 6.1
Macromedia Coldfusion 6.0
Macromedia Coldfusion 7.0
5
CVSSv2
CVE-2002-2186
Macromedia JRun 3.0, 3.1, and 4.0 allow remote malicious users to view the source code of .JSP files via Unicode encoded character values in a URL.
Macromedia Jrun 3.0
Macromedia Jrun 3.1
Macromedia Jrun 4.0
5
CVSSv2
CVE-2002-1855
Macromedia JRun 3.0 up to and including 4.0, when running on Windows, allows remote malicious users to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF...
Macromedia Jrun 3.0
Macromedia Jrun 3.1
Macromedia Jrun 4.0
5
CVSSv2
CVE-2002-1534
Macromedia Flash Player allows remote malicious users to read arbitrary files via XML script in a .swf file that is hosted on a remote SMB share.
Macromedia Flash Player 6.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 6.0.47.0
5
CVSSv2
CVE-2006-6827
Flash8b.ocx in Macromedia Flash 8 allows remote malicious users to cause a denial of service (Internet Explorer 7 crash) via a long string in the Flash8b.AllowScriptAccess method.
Macromedia Flash Player 8.0.33.0
Macromedia Flash Player 8.0
Macromedia Flash Player 8.0.22.0
Macromedia Flash Player 8.0.24.0
1 EDB exploit
5
CVSSv2
CVE-2004-1815
Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote malicious users to cause a denial of service (memory consumption).
Sun One Application Server 7.0
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
5
CVSSv2
CVE-2002-1992
Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote malicious users to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header.
Macromedia Coldfusion
Macromedia Coldfusion Professional
7.2
CVSSv2
CVE-2006-3979
The AdminAPI of ColdFusion MX 7 allows malicious users to bypass authentication by using "programmatic access" to the adminAPI instead of the ColdFusion Administrator.
Macromedia Coldfusion 7.0
Macromedia Coldfusion 7.02
5
CVSSv2
CVE-2001-1545
Macromedia JRun 3.0 and 3.1 appends the jsessionid to URL requests (a.k.a. rewriting) when client browsers have cookies enabled, which allows remote malicious users to obtain session IDs and hijack sessions via HTTP referrer fields or sniffing.
Macromedia Jrun 3.0
Macromedia Jrun 3.1
7.5
CVSSv2
CVE-2005-4472
Stack-based buffer overflow in the Macromedia JRun 4 web server (JWS) allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long request that is not properly handled during conversion to wide characters.
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »