Adobe : Security Vulnerabilities, CVEs, Published In March 2008
The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without detection.
Max CVSS
7.5
EPSS Score
2.38%
Published
2008-03-12
Updated
2017-08-08
Cross-site scripting (XSS) vulnerability in the web management interface in Adobe LiveCycle Workflow 6.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Max CVSS
4.3
EPSS Score
0.34%
Published
2008-03-12
Updated
2018-10-11
Multiple unspecified vulnerabilities in FLA file parsing in Adobe Flash CS3 Professional, Flash Professional 8, and Flash Basic 8 on Windows allow user-assisted remote attackers to execute arbitrary code via a crafted .FLA file.
Max CVSS
6.8
EPSS Score
9.00%
Published
2008-03-24
Updated
2017-08-08
acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling.
Max CVSS
3.7
EPSS Score
0.04%
Published
2008-03-06
Updated
2017-08-08
Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to bypass the cross-site scripting (XSS) protection mechanism for applications via unspecified vectors related to the setEncoding function.
Max CVSS
5.0
EPSS Score
0.29%
Published
2008-03-12
Updated
2017-08-08
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.25%
Published
2008-03-12
Updated
2017-08-08
Multiple buffer overflows in Adobe Form Designer 5.0 and Form Client 5.0 allow remote attackers to execute arbitrary code via unknown vectors in the (1) Adobe File Dialog Button (FileDlg.dll) and the (2) Adobe Copy to Server Object (SvrCopy.dll) ActiveX controls.
Max CVSS
9.3
EPSS Score
9.97%
Published
2008-03-12
Updated
2017-08-08
7 vulnerabilities found