Macromedia : Security Vulnerabilities, CVEs, CVSS score between 2 and 2.99

CVE-2005-4344

Adobe (formerly Macromedia) ColdFusion MX 7.0 does not honor when the CFOBJECT /CreateObject(Java) setting is disabled, which allows local users to create an object despite the specified configuration.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-12-19
Updated
2011-03-08

CVE-2005-3112

The "reset password" feature in Macromedia Breeze 5.0 stores passwords in plaintext in the database instead of the hash, which allows attackers with access to the database to obtain the passwords.
Max CVSS
2.1
EPSS Score
0.06%
Published
2005-09-30
Updated
2008-09-05

CVE-2004-0407

The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allows remote attackers to cause a denial of service (disk consumption) by repeatedly uploading files and interrupting the uploads before they finish.
Max CVSS
2.6
EPSS Score
1.27%
Published
2004-06-01
Updated
2017-07-11

CVE-1999-1271

Macromedia Dreamweaver uses weak encryption to store FTP passwords, which could allow local users to easily decrypt the passwords of other users.
Max CVSS
2.1
EPSS Score
0.05%
Published
1998-06-11
Updated
2017-12-19
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close