CVE-2008-1203

The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without detection.

Date published : 2008-03-11

http://www.securityfocus.com/bid/28207

http://www.adobe.com/support/security/bulletins/apsb08-08.html