Latest News

Reserve Bank of Australia CIO retires

NAB's SecOps rethink focuses on data expert and dev hires

Bunnings turns agentic focus to trade and commercial customers

Anthropic alleges Alibaba illicitly extracted Claude AI model capabilities

US FCC toughens submarine communication cable rules

Adobe issues ColdFusion fix

By Darren Pauli

Jan 16 2013 9:01AM

Vulnerabilities grant remote authentication bypass.

In brief: Adobe has patched a hole in ColdFusion to close critical vulnerabilities that allow attackers to bypass authentication and remotely hijack servers.

Adobe issues ColdFusion fix

Four of the flaws (CVE-2013-0625, CVE-2013-0629, CVE-2013-0631 and CVE-2013-0632) are already exploited in the wild.

The patched holes include an authentication bypass, directory traversal, and a vulnerability that results in result in information disclosure from compromised servers.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © SC Magazine, Australia

Tags:

adobe coldfusion patching security

Partner Content

Why resilient communications are becoming critical infrastructure for modern enterprise IT

Promoted Content Why resilient communications are becoming critical infrastructure for modern enterprise IT

One NZ cut provisioning time from days to minutes. Here's how

Partner Content One NZ cut provisioning time from days to minutes. Here's how

CommBank creates opportunities for technologists to upskill with frontier AI companies

Partner Content CommBank creates opportunities for technologists to upskill with frontier AI companies

AI agents are reshaping identity governance, and attackers are already exploiting the gap

Partner Content AI agents are reshaping identity governance, and attackers are already exploiting the gap

Sponsored Whitepapers

Innovate anywhere with HPE and Azure Local

Innovate anywhere with HPE and Azure Local

Cloud Covered Report: New Zealand

Cloud Covered Report: New Zealand

How healthcare organisations can get more value from cloud

How healthcare organisations can get more value from cloud

The governed agent: A new framework for responsible AI at scale

The governed agent: A new framework for responsible AI at scale

Securing Machinery of Government changes

Securing Machinery of Government changes

Events

Most Read Articles

ASD to retire Essential Eight cyber security framework within next two years

ASD to retire Essential Eight cyber security framework within next two years

ASD draws a hard line on developers lacking security skills

ASD draws a hard line on developers lacking security skills

Fake IT worker threat spreads outside tech sector in Australia

Fake IT worker threat spreads outside tech sector in Australia

NAB builds integrated ops hub for threat intelligence

NAB builds integrated ops hub for threat intelligence

Sydney-based AI-cloud waste startup raises $3m

Sydney-based AI-cloud waste startup raises $3m

Brennan uses NiCE to modernise its contact centre

Brennan uses NiCE to modernise its contact centre

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Interactive introduces private cloud platform

Interactive introduces private cloud platform

Digital61 expands cybersecurity portfolio

Digital61 expands cybersecurity portfolio

Most popular tech stories