CVE-2008-1203

EUVD-2008-1212
The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without detection.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
Affected Products (NVD)
VendorProductVersion
adobecoldfusion
7.0
adobecoldfusion
8.0
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/29332
http://www.adobe.com/support/security/bulletins/apsb08-08.html
http://www.securityfocus.com/bid/28207
http://www.securitytracker.com/id?1019600
http://www.vupen.com/english/advisories/2008/0862/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41150
http://secunia.com/advisories/29332
http://www.adobe.com/support/security/bulletins/apsb08-08.html
http://www.securityfocus.com/bid/28207
http://www.securitytracker.com/id?1019600
http://www.vupen.com/english/advisories/2008/0862/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41150