Adobe issues ColdFusion fix

By on
Adobe issues ColdFusion fix

Vulnerabilities grant remote authentication bypass.

In brief: Adobe has patched a hole in ColdFusion to close critical vulnerabilities that allow attackers to bypass authentication and remotely hijack servers. 

Four of the flaws (CVE-2013-0625, CVE-2013-0629, CVE-2013-0631 and CVE-2013-0632) are already exploited in the wild.

The patched holes include an authentication bypass, directory traversal, and a vulnerability that results in result in information disclosure from compromised servers.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © SC Magazine, Australia

Tags:
adobe coldfusion patching security
In Partnership With

Most Read Articles

Ban Chrome as default browser, limit Facebook user data harvesting: ACCC crackdown

Ban Chrome as default browser, limit Facebook user data harvesting: ACCC crackdown
NBN Co reveals 58 percent of HFC network still unserviceable

NBN Co reveals 58 percent of HFC network still unserviceable
Microsoft patches exploited new Windows zero-day

Microsoft patches exploited new Windows zero-day
NBN Co technicians missed 430 appointments a day

NBN Co technicians missed 430 appointments a day
You must be a registered member of iTnews to post a comment.
| Register

Whitepapers from our sponsors

Automate and secure IOT for Business
Automate and secure IOT for Business
Data Science and AI Solutions for Cybersecurity
Data Science and AI Solutions for Cybersecurity
Intro to AI for Security Professionals
Intro to AI for Security Professionals
Digital Transformation: Hope, or Hype?
Digital Transformation: Hope, or Hype?
How to choose a trusted IT provider
How to choose a trusted IT provider

Events

Log In

Username / Email:
Password:
  |  Forgot your password?