CF Security Update
I got an email with a security update bulletin from Adobe yesterday.
It seems there is some sort of vulnerability via cfid and cftoken regarding session hijacking. It affects both cf7 and cf8 unless you are using J2EE session management.
Patch can be found here.
If you use shared hosting and your host knows CF well then you are probably all set. If they don't or your not sure you should let them know about the update. Also if you don't get secuirty bulletins via email from adobe you should sign up for that today.
On a side note, I find the font color for the link in the security bulletin very hard to differentiate from the text of the page. Took me a bit to find where to actually download the update.
NAVIGATION
HomeAbout Me
RSS
Search
Subscribe
Recent Entries
Inception Plot QuestionsRandom Chuck Norris Fact Generator With A Twist
Virtual Currency for Buses
Applying ColdFusion Security Patches Gotcha
Privacy, Walled Gardens, Standards and Our Future
Recent Comments
KTML File Uploads Hang in IE7 with Flash 10 and How to Fix
Eric said: Thanks much
[More]
Inception Plot Questions
hohack said: @ switchkosterice 5 comments, those kids are from when mal is alive still
[More]
Inception Plot Questions
Ira said: Just saw it a 2nd time. Do so, and pay extremely close attention to two details throughout the film:...
[More]
Inception Plot Questions
said:
[More]
Inception Plot Questions
switchkosterice said: The kids at the end actually have aged. In fact, they're an entirely different (and older) set of ac...
[More]
Calendar
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | ||||
| 4 | 5 | 6 | 7 | 8 | 9 | 10 |
| 11 | 12 | 13 | 14 | 15 | 16 | 17 |
| 18 | 19 | 20 | 21 | 22 | 23 | 24 |
| 25 | 26 | 27 | 28 | 29 | 30 | 31 |
Archives By Subject
blogs (31) [RSS]books (4) [RSS]
Crazy (39) [RSS]
DIY (8) [RSS]
Flex (3) [RSS]
games (10) [RSS]
GRRR (13) [RSS]
Ideas (11) [RSS]
Local (14) [RSS]
LOLpics (2) [RSS]
money (9) [RSS]
music (3) [RSS]
Personal (27) [RSS]
Photos (8) [RSS]
Politics (8) [RSS]
Projects (22) [RSS]
Review (19) [RSS]
RPM (9) [RSS]
Spam (16) [RSS]
Technology (68) [RSS]
Testing (3) [RSS]
TV (15) [RSS]
video (32) [RSS]
Web Dev (224) [RSS]
World of Warcraft (16) [RSS]
There are no comments for this entry.
[Add Comment] [Subscribe to Comments]