CVE-2004-1815

Macromedia Coldfusion - Denial of Service

Title source: rule

Description

Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote attackers to cause a denial of service (memory consumption).

References (5)

[Mailing List] http://marc.info/?l=bugtraq&m=107936690702515&w=2

[Patch, Vendor Advisory] http://secunia.com/advisories/11132

[Patch, Vendor Advisory] http://www.macromedia.com/devnet/security/security_zone/mpsb04-04.html

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/9877

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/15473

Scores

EPSS 0.0859

EPSS Percentile 92.3%

Classification

Status draft

Affected Products (12)

macromedia/coldfusion

macromedia/jrun

sun/one_application_server

Timeline

Published Mar 15, 2004

Tracked Since Feb 18, 2026