Latest News

Audit Office of NSW and Data61 explore AI for gov auditing

Services Australia may get powers to rein in data breach exposure

Samsung: 98,000 handsets with triple zero call issues still 'active'

Private 5G powers data-driven mining

Macquarie Group unveils Dexd, its "developer experience daemon"

Adobe issues ColdFusion fix

By Darren Pauli

Jan 16 2013 9:01AM

Vulnerabilities grant remote authentication bypass.

In brief: Adobe has patched a hole in ColdFusion to close critical vulnerabilities that allow attackers to bypass authentication and remotely hijack servers.

Adobe issues ColdFusion fix

Four of the flaws (CVE-2013-0625, CVE-2013-0629, CVE-2013-0631 and CVE-2013-0632) are already exploited in the wild.

The patched holes include an authentication bypass, directory traversal, and a vulnerability that results in result in information disclosure from compromised servers.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © SC Magazine, Australia

Tags:

adobe coldfusion patching security

Partner Content

Suntory Oceania’s $30 million IT transformation powers carbon-neutral multi beverage facility

Partner Content Suntory Oceania’s $30 million IT transformation powers carbon-neutral multi beverage facility

Transforming Australian Insurance Operations, Customer Service and Fraud Detection with AI and ML

Partner Content Transforming Australian Insurance Operations, Customer Service and Fraud Detection with AI and ML

Empowering Sustainability: Schneider Electric's Commitment to Driving Customer Success

Partner Content Empowering Sustainability: Schneider Electric's Commitment to Driving Customer Success

What Embracing the AI Platform Shift Really Means

Partner Content What Embracing the AI Platform Shift Really Means

Sponsored Whitepapers

The cloud tipping point

The cloud tipping point

How AI will deliver real business value

How AI will deliver real business value

The multicloud imperative

The multicloud imperative

Your multicloud advantage

Your multicloud advantage

The business value of Oracle Autonomous Database

The business value of Oracle Autonomous Database

Events

iTnews Executive Retreat - Security Leaders Edition

Most Read Articles

WA man jailed for at least five years for evil twin attack

WA man jailed for at least five years for evil twin attack

ASX outage caused by security software upgrade

ASX outage caused by security software upgrade

Home Affairs to unleash AI on sensitive government data

Home Affairs to unleash AI on sensitive government data

India revokes order to preload cyber security app on smartphones

India revokes order to preload cyber security app on smartphones

Sydney-based AI-cloud waste startup raises $3m

Sydney-based AI-cloud waste startup raises $3m

Brennan uses NiCE to modernise its contact centre

Brennan uses NiCE to modernise its contact centre

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Interactive introduces private cloud platform

Interactive introduces private cloud platform

Digital61 expands cybersecurity portfolio

Digital61 expands cybersecurity portfolio

Most popular tech stories