Adobe issues ColdFusion fix

By on
Adobe issues ColdFusion fix

Vulnerabilities grant remote authentication bypass.

In brief: Adobe has patched a hole in ColdFusion to close critical vulnerabilities that allow attackers to bypass authentication and remotely hijack servers. 

Four of the flaws (CVE-2013-0625, CVE-2013-0629, CVE-2013-0631 and CVE-2013-0632) are already exploited in the wild.

The patched holes include an authentication bypass, directory traversal, and a vulnerability that results in result in information disclosure from compromised servers.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © SC Magazine, Australia

Tags:
adobe coldfusion patching security
In Partnership With

Most Read Articles

Telstra towers over rivals in war for NBN power

Telstra towers over rivals in war for NBN power
NSW transit officers can't check credit card tap-ons

NSW transit officers can't check credit card tap-ons
ANZ digital chief Maile Carnegie frets over human obsolescence

ANZ digital chief Maile Carnegie frets over human obsolescence
Linus Torvalds apologises for 'hurtful' behavior, takes a break

Linus Torvalds apologises for 'hurtful' behavior, takes a break
You must be a registered member of iTnews to post a comment.
| Register

Whitepapers from our sponsors

How to choose a trusted IT provider
How to choose a trusted IT provider
Why Business Process Modelling Matters
Why Business Process Modelling Matters
Report: ANZ IT Decision Makers - Top Priorities for Endpoint Security 2018
Report: ANZ IT Decision Makers - Top Priorities for Endpoint Security 2018
Managed Security Service Providers for Dummies
Managed Security Service Providers for Dummies
The Cost of Cloud Expertise report
The Cost of Cloud Expertise report

Events

Log In

Username / Email:
Password:
  |  Forgot your password?