Vulnerability Name:

CVE-2004-2204 (CCN-17567)

Assigned:2004-09-30
Published:2004-09-30
Updated:2017-07-11
Summary:Macromedia ColdFusion MX 6.0 and 6.1 application server, when running with the CreateObject function or CFOBJECT tag enabled, allows local users to conduct unauthorized activities and obtain administrative passwords by creating CFML scripts that use CreateObject or CFOBJECT.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Thu Sep 30 2004 - 17:11:40 CDT
CFMX vulnerability

Source: MITRE
Type: CNA
CVE-2004-2204

Source: CCN
Type: SA12693
Macromedia ColdFusion MX Security Bypass Vulnerability

Source: SECUNIA
Type: Vendor Advisory
12693

Source: CCN
Type: Macromedia Web site
Macromedia

Source: CCN
Type: Macromedia Security Bulletin MPSB04-10
The CFOBJECT tag and CreateObject functions should be secured in a shared or untrusted developer environment

Source: CONFIRM
Type: Vendor Advisory
http://www.macromedia.com/devnet/security/security_zone/mpsb04-10.html

Source: OSVDB
Type: UNKNOWN
10718

Source: CCN
Type: OSVDB ID: 10477
ColdFusion MX Object Tag Admin Password Disclosure

Source: CCN
Type: OSVDB ID: 10718
ColdFusion CFOBJECT Tag Privilege Escalation

Source: BUGTRAQ
Type: UNKNOWN
20040930 CFMX vulnerability

Source: CCN
Type: BID-11316
Macromedia ColdFusion MX Template Handling Privilege Escalation Vulnerability

Source: BID
Type: UNKNOWN
11364

Source: CCN
Type: BID-11364
Macromedia ColdFusion MX CreateObject And CFOBJECT Java Extensibility Weakness

Source: XF
Type: UNKNOWN
coldfusion-gain-access(17567)

Source: XF
Type: UNKNOWN
coldfusion-gain-access(17567)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:macromedia:coldfusion:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:macromedia:coldfusion:6.1:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:macromedia:coldfusion:6.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    macromedia coldfusion 6.0
    macromedia coldfusion 6.1
    macromedia coldfusion 6.1