Entries Tagged as “web application security”
New Critical ColdFusion security update for version 9 and above
Security | Administrator | Adobe ColdFusion | Adobe ColdFusion 10 | Announcements | Hotfix | web application security
A security update for ColdFusion is now available for versions 10, 9, 9.0.1 and 9.0.2. This hot-fix addresses issues reported in Advisory 13-03
If you are on ColdFusion 10, you will see a new update 10 within the ColdFusion administrator for you to download and install.
Adobe recommends users update their product installation with this update. Here's a link to the related security bulletin.
We highly recommend locking down public facing servers to prevent against unknown attacks. As an additional precaution, we recommend commenting RDS servlet in web.xml
Complete instructions for protecting server can be found accessed here. ColdFusion 10 Lockdown Guide, ColdFusion 9 Lockdown Guide
New ColdFusion security update for version 9 and above
Security | Adobe ColdFusion | Adobe ColdFusion 10 | Announcements | Updates | web application security
An important security update for ColdFusion is now available for versions 10, 9, 9.0.1 and 9.0.2.
If you are on ColdFusion 10, you will see a new update 9 within the ColdFusion administrator for you to download and install.
Adobe recommends users update their product installation with this update. Here's a link to the related security bulletin.
Note: It is recommended that, request related functionality is not used with CFThread.
JRun End of Sale post April 2013
Announcements | web application development | web application security | web programming
Adobe JRun will no longer be available for purchase post April 2013. Adobe will continue to fulfill its obligations under existing maintenance contracts through the term of such contracts.
ColdFusion 9, however will continue to be under core support from Adobe.
Here's the link to the updated JRun product page and FAQ page on adobe.com.
New CHFs for CF 9 and CF 9.0.1
Announcements | Rapid Application Development | Tomcat | web application development | web application security | web programming
We now have new CHFs available for ColdFusion 9 and ColdFusion 9.0.1. This CHFs will address the issues that were present in the previous CHFs. We recomend that you apply this update to your ColdFusion 9 and ColdFusion 9.0.1 installations.
Here are the links to the related techotes for CF 9 and CF 9.0.1.
For ColdFusion 10 and ColdFusion 9.0.2 the updates have been refreshed to fix an issue with the Google Map API and the related technotes can be found here : 9.0.2, 10
New Platform Support for ColdFusion 10 and ColdFusion Builder 2.0.1: Windows 8 and Windows Server 2012
Adobe ColdFusion 10 | Adobe ColdFusion Builder 2.0.1 | Announcements | Rapid Application Development | web application development | web application security | web programming
Microsoft Windows 8 and Microsoft Windows Server 2012 are now supported platforms for ColdFusion 10. The new Windows installers are available for download to all retail and licensing customers as well on the trials download page.
The ColdFusion Builder 2.0.1 installers have also been updated to support Windows 8. The existing MAC OS X installer for ColdFusion Builder 2.0.1 has also been certified to now support MAC OS X 10.8.
Refer this technote for more details about the support.