CVE-2007-1874

Name of the Vulnerable Software and Affected Versions: Adobe ColdFusion MX 7 for Linux and Solaris (affected versions not specified)

Description: The issue allows local users to execute arbitrary code or obtain sensitive information due to insecure permissions for certain scripts and directories. This includes files such as CFMX7DreamWeaverExtensions.mxp, CFReportBuilderInstaller.exe, .com.zerog.registry.xml, uninstall.lax, license.txt, Readme.htm, and certain files in lib/wsconfig/, as well as scripts like k2adminstop and k2adminstart.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.