Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when under heavy load, causes JRun to assign a duplicate authentication token to multiple sessions, which could allow authenticated users to gain privileges as other users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Adobe Macromedia ColdFusion MX/ JRun 权限提升漏洞
Vulnerability Description
Jrun是由Allaire公司开发的JAVA服务器软件。 ColdFusion MX 是一个适用于Windows和Solaris的网站应用程序服务器程序,为开发者提供了一个高效率的脚本环境以及整合的搜索和图表绘制功能。 Macromedia JRun 4.0、ColdFusion MX 6.1和7.0中的竞争条件存在权限提升漏洞。 当负载较重时,竞争条件会导致JRun将重复的认证令牌指派给多个会话,这可让认证用户作为其他用户获取特权。
CVSS Information
N/A
Vulnerability Type
N/A