CVE-2005-4342

CVE Database · CVE-2005-4342

CVE-2005-4342

· N/AModified

CVSS v3.1

N/A

EPSS

1.70%

Published

Dec 19, 2005

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote attackers to "bypass security controls," aka "JRun Clustered Sandbox Security Vulnerability."

Affected Products (5)

macromedia · coldfusionvulnerable

References (12)

http://secunia.com/advisories/18078

PatchVendor Advisory

http://securitytracker.com/id?1015369

PatchVendor Advisory

http://www.macromedia.com/devnet/security/security_zone/mpsb05-12.html

Patch

http://www.macromedia.com/devnet/security/security_zone/mpsb05-14.html

Patch

http://www.securityfocus.com/bid/15904

Patch

http://www.vupen.com/english/advisories/2005/2948

http://secunia.com/advisories/18078

Patch

KEV Catalog EPSS Scores Vendors All CVEs