CVE-2007-1278 : Unspecified vulnerability in the IIS connector in Adobe JRun 4.0 Updater 6, and

Unspecified vulnerability in the IIS connector in Adobe JRun 4.0 Updater 6, and ColdFusion MX 6.1 and 7.0 Enterprise, when using Microsoft IIS 6, allows remote attackers to cause a denial of service via unspecified vectors, involving the request of a file in the JRun web root.

Published 2007-03-16 20:19:00

Updated 2019-07-03 17:25:47

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2007-1278

Adobe » Coldfusion » Version: 6.1 Enterprise Server Edition
cpe:2.3:a:adobe:coldfusion:6.1:*:enterprise_server:*:*:*:*:*
Matching versions
When used together with: Microsoft » Internet Information Server » Version: 6.0
Adobe » Coldfusion » Version: 7.0 Enterprise Server Edition
cpe:2.3:a:adobe:coldfusion:7.0:*:enterprise_server:*:*:*:*:*
Matching versions
When used together with: Microsoft » Internet Information Server » Version: 6.0
Adobe » Jrun » Version: 4.0 Update Updater6
cpe:2.3:a:adobe:jrun:4.0:updater6:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Internet Information Server » Version: 6.0

Exploit prediction scoring system (EPSS) score for CVE-2007-1278

EPSS FAQ

5.65%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 90 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2007-1278

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2007-1278

Jump to

Vulnerability Details : CVE-2007-1278

Products affected by CVE-2007-1278

Exploit prediction scoring system (EPSS) score for CVE-2007-1278

CVSS scores for CVE-2007-1278

References for CVE-2007-1278