Monday, December 3, 2007

ColdFusion Security Fix

Adobe has released a security advisory for ColdFusion 7 and 8. This resolves an identified vulnerability that could potentially allow session hijacking for applications utilizing CFID or CFTOKEN. This does not apply to applications using J2EE Session management.

More details and how to get your ColdFusion server updated can be found on this link:

http://www.adobe.com/support/security/bulletins/apsb07-19.html
 
 

No comments:

Post a Comment