This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies.  > Find out more here

 
All the latest UK technology news, reviews and analysis

Adobe posts patch for ColdFusion server flaw

by Shaun Nichols
17 Jan 2013
View Comments
  • Tweet this
Adobe headquarters in San Jose

Administrators running Adobe ColdFusion are being advised to update their servers following the release of a security patch.

The company said that the update would address a handful privilege elevation in the web application server platform. The update covers both ColdFusion 9 and 10 builds for the Windows, Unix and OS X versions of the platform.

According to Adobe, the four flaws addressed in the patch could potentially allow a remote attacker to circumvent privacy controls on ColdFusion servers. In the most severe cases, an attacker would be able to assume total control over the targeted server.

Due to the nature of the vulnerabilities and because of reports that the flaws are being actively targeted in the wild, Adobe has given the patch its highest priority rating.

Adobe said that the top priority rating is usually reserved for serious flaws which are already or will likely soon be targeted in the wild.

Administrators can obtain the ColdFusion update from Adobe as a direct download. The company noted that ColdFusion 10 systems should have the "mandatory update" package installed before running the fix.

The release is the latest in what has been a busy week for security updates. Earlier this week Oracle issued a massive 86-patch security release, and the discovery of a new zero-day flaw in Java will likely necessitate another patch release in the coming days.

Do you agree
blog comments powered by Disqus
Poll

Apple iOS 7 redesign poll

Will you be updating your iPhone to the new version of the operating system unveiled by Apple?
17%
2%
6%
2%
73%

Popular Threads

Powered by Disqus
HTC One vs Apple iPhone 5 head to head review

iPhone 5 v HTC One head to head video review

V3 pits top devices against one another ahead of Samsung Galaxy S4 launch

Updating your subscription status Loading
Connect with V3.co.uk

Sign up to our daily or weekly newsletters

newsletter sign-up button
mimecast

Postini migration – 5 easy steps

The clock is ticking for Postini users that don't want to move their email management to Google Apps.

acquia

How to keep up with the speed of the web through open source

Build great digital experiences at the speed of the web

Informatica consultant

Description Develop code for data population to Staging...

Application Packager APP V 4.5, 4.6 (MSI, WISE)

My client are a leading consultancy, and are now looking...

Application Packager App-V, 4.5, 4.6 (wise msi)

My client are a leading consultancy, and are now looking...

MS Solution Consultant (Desktop Deployment, SCCM ,SMS)

Microsoft Solutions Consultant/Pre Sales Consultant SCCM...
To send to more than one email address, simply separate each address with a comma.