Adobe ColdFusion 9.0, 9.0.1, and 9.0.2, when a password is not configured, allows remote malicious users to bypass authentication and possibly execute arbitrary code via unspecified vectors, as exploited in the wild in January 2013.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe coldfusion 9.0.2 |
||
adobe coldfusion 10.0 |
||
adobe coldfusion 9.0 |
||
adobe coldfusion 9.0.1 |