CVE-2012-5675 — MEDIUM (4.4)

Vulnerability Description

Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.

CVSS Score

4.4

MEDIUM

AV:L/AC:M/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Adobe	Coldfusion	9.0

Related Weaknesses (CWE)

CWE-264

References

http://www.adobe.com/support/security/bulletins/apsb12-26.htmlPatchVendor Advisory
http://www.adobe.com/support/security/bulletins/apsb12-26.htmlPatchVendor Advisory

FAQ

What is CVE-2012-5675?

CVE-2012-5675 is a vulnerability with a CVSS score of 4.4 (MEDIUM). Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.

How severe is CVE-2012-5675?

CVE-2012-5675 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-5675?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Coldfusion.