ColdFusion MX 7.0 API Exposes Administrator Password Hash Vulnerability

ColdFusion MX 7.0 API Exposes Administrator Password Hash Vulnerability

CVE-2005-4345 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Adobe (formerly Macromedia) ColdFusion MX 7.0 exposes the password hash of the Administrator in an API call, which allows local developers to obtain the hash and gain privileges.

Learn more about our Api Penetration Testing.