Nov

14

ColdFusion Security Fix

Posted At : November 14, 2007 8:50 AM Posted By : phill.nacelli
Related Categories: ColdFusion

Just want to pass on the word that Adobe has released a security advisory yesterday for ColdFusion 7 and 8. This resolves an identified vulnerability that could potentially allow session hijacking for applications utilizing CFID or CFTOKEN. This does not apply to applications using J2EE Session management.

More details and how to get your ColdFusion server updated can be found on this link:

http://www.adobe.com/support/security/bulletins/apsb07-19.html

Comments (1) | Print | Send | del.icio.us | Linking Blogs

Comments

[Add Comment]

Phill , my warm thanks for link.

Petra

# Posted By Petra | 7/21/08 6:00 AM

[Add Comment]

Search

Calendar

ABOUT

Phill Nacelli has been developing software for over 9 years, and have been using ColdFusion since version 4.5. He has engineered and developed multiple web based applications for the federal government, non-profit association/education market and enjoys playing with the latest in programming techniques, frameworks and development tools. He currently holds a position as Software Architect at AboutWeb, a leading provider of technology and career development services to small businesses, corporations, associations and government agencies based in Rockville, MD.

EVENTS

CF.Objective 2008 - Speaker

Scotch-On-The-Rocks 2008

CONTACT ME

Subscribe

Enter your email address to subscribe to this blog.

AboutWeb

IT Solutions, Staffing, and Training at AboutWeb

Adobe, ColdFusion, Flex Training at AboutWeb

LINKS

AboutWeb Blogs
Kelly Brown - His World
Nic Tunney - CF Mofo
Chris Turner - CF Hitman
Jon Rowny - CF Prodigy
Rolando Lopez - CF Loco

Community Blogs
Simon Horwith - CF Madman
Scott Stroz - Boyzoid & Ganius
Joe Rinehart - Firemoss
Jared Rypka-Hauer - CF.Objective

Great Companies
AboutWeb, LLC
Adobe, Inc.

Resources
cfoop.org - OO & ColdFusion

Goodies
Model-Glue Framework
ColdSpring Framework
ColdBox Framework
objectBreeze ORM
Reactor ORM
Transfer ORM
CFEclipse Plugin
Subversion Version Control
Subclipse Plugin
ANT Build Tool
Red-Gate SQL Prompt

On The Web

COMMUNITIES

LOCAL WEATHER

Clarksburg, MD (20871) Weather

Archives By Subject

AboutWeb (2) [RSS]
AIR (8) [RSS]
ANT (3) [RSS]
Apollo (3) [RSS]
CF.Objective() (2) [RSS]
CFChart (1) [RSS]
CFEclipse (1) [RSS]
CFUnited (5) [RSS]
ColdFusion (20) [RSS]
ColdSpring (1) [RSS]
Conferences (5) [RSS]
Design Patterns (1) [RSS]
Events (5) [RSS]
Flash (2) [RSS]
FLEX (13) [RSS]
Frameworks (2) [RSS]
General (11) [RSS]
IDE/Tools (3) [RSS]
IIS (1) [RSS]
Job Opportunity (2) [RSS]
MAX (1) [RSS]
Model-Glue (5) [RSS]
Object Oriented Programming (8) [RSS]
Personal (5) [RSS]
Presentations (12) [RSS]
SQL (3) [RSS]
Subversion-SVN (2) [RSS]
User Group (7) [RSS]

Recent Entries

No recent entries.

Recent Comments

Reverse DNS Lookup in ColdFusion
Play games said: http://www.iplaygames2.com play game more
Reverse DNS Lookup in ColdFusion
Play games said: http://www.iplaygames2 play game more
Reverse DNS Lookup in ColdFusion
mp3 said: Get free your mp3 http://www.mp3bag.net download more
ColdFusion in the News - SDTimes
Josh said: Catherine Stonuski is deeply in debt. She owes the nursing home her husband resides in more money th... more
AboutWeb Looking for a Web Designer
Jeph said: Nursing home faces debt crisis VIRGIL, ONT. Pleasant Manor, a new Mennonite and Mennonite Brethren n... more

BLOG TRAFFIC

RSS

BlogCFC was created by Raymond Camden. This blog is running version 5.003. Powered by ColdFusion Server v8,0,1,195765.