Adobe issues ColdFusion fix

By on
Adobe issues ColdFusion fix

Vulnerabilities grant remote authentication bypass.

In brief: Adobe has patched a hole in ColdFusion to close critical vulnerabilities that allow attackers to bypass authentication and remotely hijack servers. 

Four of the flaws (CVE-2013-0625, CVE-2013-0629, CVE-2013-0631 and CVE-2013-0632) are already exploited in the wild.

The patched holes include an authentication bypass, directory traversal, and a vulnerability that results in result in information disclosure from compromised servers.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © SC Magazine, Australia

Tags:
adobe coldfusion patching security
In Partnership With

Most Read Articles

Wipro hacked, internal systems used to attack customers: report

Wipro hacked, internal systems used to attack customers: report
Telstra, TPG, Vocus and Optus say they aren't an NBN bottleneck

Telstra, TPG, Vocus and Optus say they aren't an NBN bottleneck
Optus sets $85 a month as its new entry-level NBN price

Optus sets $85 a month as its new entry-level NBN price
ANZ reveals the good and bad of its Agile transformation

ANZ reveals the good and bad of its Agile transformation
You must be a registered member of iTnews to post a comment.
| Register

Whitepapers from our sponsors

Stop Parasites on your Network with Sophos
Stop Parasites on your Network with Sophos
Stop your Oracle database slowing down your business
Stop your Oracle database slowing down your business
How Macquarie University has prepared for fire and flood
How Macquarie University has prepared for fire and flood
Guide to Fully-Composable Software-Defined Private Cloud
Guide to Fully-Composable Software-Defined Private Cloud
Is slow data silently killing your business? Here's why you should care.
Is slow data silently killing your business? Here's why you should care.

Events

Log In

Username / Email:
Password:
  |  Forgot your password?