Allaire Security Bulletin (ASB00-07): 'Microsoft Internet Information Server Exposure of Source Code with Malformed Hit Highlighting Arguments'
Allaire's Security Zone has posted a recommendation that developers and customers follow the instructions posted on the Microsoft Web site to address a vulnerability for Microsoft IIS. The problem exposes the ability to use a malformed URL to read the source code of ASP, CFML, Perl and other files that are on a server. This is not a problem with ColdFusion Server itself, but it is an issue that can affect ColdFusion users.
Latest ColdFusion Talk (CF-Talk)
- How do you guys deploy databases to shared servers?
- Migration from CF5 to CF8 plus Dev issues
- How to cfdump a single row in a query?
- Return JSON from a CFC
- Migration from CF5 to CF8 plus Dev issues
- Best performace/practice for storing temp data
- Personalizing a CFLoop - validation error- fixed
- Personalizing a CFLoop - validation error
- Personalizing a CFLoop - cfmail validation error
- Personalizing a CFLoop
Latest ColdFusion Jobs (CF-Jobs)
- Los Angeles developer looking for telecommute or freelance projects
- Austin area ColdFusion expert seeking full-time or telecommute work
- Mid-Senior ColdFusion Developer Needed in Columbia, MD area
- Ohio developer looking for local work
- Adobe Expert Seeking ColdFusion / Flex Dev or QA
- ColdFusion Developer Needed in Los Angeles/South Bay Area
- Serious About Your Solutions? Elite ColdFusion Developer Available in VA/DC/MD metro area
- Senior ColdFusion Developer- Edgw are, London £40,000 to 60,000 + Bens
- Senior ColdFusion Developer- Edgw ar e, London £40,000 to 60,000 + Bens
- Senior ColdFusion Developer- Edgwar e, London £40,000 to 60,000 + Bens
Want a number like 800-ColdFusion?
My Toll Free 800 Number provides a vanity phone number service to clients who want more than just digits. How would you like 800-coldfusion?