EIP-2026-103976
PRE-CVEMacromedia ColdFusion MX 6.1 - Template Handling Privilege Escalation
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-103976. PoCs published by Eric Lackey.
AI-analyzed exploit summary This ColdFusion exploit leverages a privilege escalation vulnerability by dynamically compiling a Java class that extends the SecurityManager to disable administrative security checks. It then retrieves the administrator password, demonstrating unauthorized access to sensitive configuration files.
Description
Macromedia ColdFusion MX 6.1 - Template Handling Privilege Escalation
Exploits (1)
This ColdFusion exploit leverages a privilege escalation vulnerability by dynamically compiling a Java class that extends the SecurityManager to disable administrative security checks. It then retrieves the administrator password, demonstrating unauthorized access to sensitive configuration files.