Web Design • Web Development
E-Commerce • Internet Strategy

Hotfixes for CF9 and CF10

Hotfixes for CF9 and CF10

Adobe has released a security hotfix for ColdFusion 10 for Windows, Macintosh and Linux.  This hotfix addresses a vulnerability (CVE-2013-3350) that could permit an attacker to invoke public methods on ColdFusion Components (CFC) using WebSockets. 

Adobe has released a security hotfix for ColdFusion versions 9.0, 9.0.1 and 9.0.2 on JRun.  This hotfix addresses a vulnerability (CVE-2013-3349) that could be exploited to cause a denial of service condition on a system running ColdFusion 9.0, 9.0.1 and 9.0.2 on JRun.  ColdFusion 10 customers are not affected by CVE-2013-3349.

 

For more Information on the Security Bulletin click here.