CVE-2005-4344

Adobe (formerly Macromedia) ColdFusion MX 7.0 does not honor when the CFOBJECT /CreateObject(Java) setting is disabled, which allows local users to create an object despite the specified configuration.

Date published : 2005-12-17

http://www.securityfocus.com/bid/15904

http://www.macromedia.com/devnet/security/security_zone/mpsb05-14.html