Back to search
CVE-2008-1656
Published: Apr 9, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Adobe ColdFusion 8 and 8.0.1 does not properly implement the public access level for CFC methods, which allows remote attackers to invoke these methods via Flex 2 remoting, a different vulnerability than CVE-2006-4725.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
adobe-coldfusion-cfc-security-bypass(41720)
vdb-entry
x_refsource_XF
http://www.adobe.com/support/security/bulletins/apsb08-12.html
x_refsource_CONFIRM
44280
vdb-entry
x_refsource_OSVDB
1019806
vdb-entry
x_refsource_SECTRACK
ADV-2008-1157
vdb-entry
x_refsource_VUPEN
29748
third-party-advisory
x_refsource_SECUNIA
28698
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now