Today, a priority 2 update is released, addressing an important vulnerability in ColdFusion 9.0.1 and earlier. Adobe recommends to update the ColdFusion servers. Here is the link for security bulletin.
This hot-fix addresses HTTP response splitting vulnerability in ColdFusion component browser - CVE-2012-2041
The details can be found at tech-note here.
↧
Security Hot-Fix for ColdFusion - June 2012
↧