Macnn newsColdFusion Category News
Subscribe to this page now.

Adobe plans ColdFusion fix in wake of web attacks

07/06, 11:55am

ColdFusion sec. fix soon

A ColdFusion 8 security fix is due to be released this week, says Adobe. Targeted in the patch is a problem with FCKEditor, an open-source application that comes bundled with the ColdFusion suite. The software permits file uploads and management, features which are supposed to be disabled on a ColdFusion server; the connectors can sometimes remain active however, creating a vulnerability. Knowledgeable hackers can call up FCKEditor's file manager, and use it to upload files and gain control of a server.

more

 
Popular News