Unrated severityNVD Advisory· Published Dec 19, 2005· Updated Jun 16, 2026
CVE-2005-4342
CVE-2005-4342
Description
ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote attackers to "bypass security controls," aka "JRun Clustered Sandbox Security Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:macromedia:coldfusion:6.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:macromedia:coldfusion:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:macromedia:coldfusion:6.1:*:*:*:*:*:*:*
- cpe:2.3:a:macromedia:coldfusion:6.1:*:enterprise_with_jrun:*:*:*:*:*
- cpe:2.3:a:macromedia:coldfusion:6.1:*:j2ee_application_server:*:*:*:*:*
- cpe:2.3:a:macromedia:coldfusion:7.0:*:*:*:*:*:*:*
- Range: <=7.0
Patches
Vulnerability mechanics
References
6- secunia.com/advisories/18078nvdPatchVendor Advisory
- securitytracker.com/idnvdPatchVendor Advisory
- www.macromedia.com/devnet/security/security_zone/mpsb05-12.htmlnvdPatch
- www.macromedia.com/devnet/security/security_zone/mpsb05-14.htmlnvdPatch
- www.securityfocus.com/bid/15904nvdPatch
- www.vupen.com/english/advisories/2005/2948nvd
News mentions
0No linked articles in our index yet.