Patch for Apache 1.3.x, 2.0 View Source Vulnerability in ColdFusion MX and JRun 4.0 on Windows
ColdFusion MX and JRun 4.0 will show source code while browsing .cfm, .cfc,.cfml (ColdFusion MX) or .jsp (JRun) pages if the user appends an encoded space to the end of a URL. This vulnerability only affects Apache 1.3.x and 2.x versions on Windows platforms.
Visit the URL below to download Updater 3, which contains the patch.
Patch for Apache 1.3.x, 2.0 View Source Vulnerability in ColdFusion MX and JRun 4.0 on Windows
Latest ColdFusion Talk (CF-Talk)
- ColdFusion not seeing standard Java classes when using CFINVOKE
- Pre-filling FileField Values
- cfthread running condition?
- cfhttp and Google Search Appliance
- xmlTransform() and an unnecessary xml declaration
- AMD vs Intel for ColdFusion Servers
- Listing then Deleting Duplicates
- CF8 PDF Fonts
- putting " " in cffile
- Text to image for Non CSS font resolution
Latest ColdFusion Jobs (CF-Jobs)
- Sr ColdFusion Developer Available
- Cold Fusion Flex Developer - PA
- North Bay Application Developer Search
- Contract to HIRE Cold Fusion Developer needed in Wake Forest NC
- Please post this Cold Fusion opportunity Thanks
- ColdFusion Developer - Northern California
- ColdFusion MX 7 Server Consultant in/around Hoboken, NJ
- ColdFusion Web Developer - Baltimore, MD
- ColdFusion Web Developer
- Part Time Coding Job
Want a number like 800-ColdFusion?
My Toll Free 800 Number provides a vanity phone number service to clients who want more than just digits. How would you like 800-coldfusion?