Adobe has released a security advisory for ColdFusion 7 and 8. This resolves an identified vulnerability that could potentially allow session hijacking for applications utilizing CFID or CFTOKEN. This does not apply to applications using J2EE Session management.
More details and how to get your ColdFusion server updated can be found on this link:
http://www.adobe.com/support/security/bulletins/apsb07-19.html
No comments:
Post a Comment