Patch for Apache 1.3.x, 2.0 View Source Vulnerability in ColdFusion MX and JRun 4.0 on Windows

May 29, 2003

ColdFusion MX and JRun 4.0 will show source code while browsing .cfm, .cfc,.cfml (ColdFusion MX) or .jsp (JRun) pages if the user appends an encoded space to the end of a URL. This vulnerability only affects Apache 1.3.x and 2.x versions on Windows platforms.

Visit the URL below to download Updater 3, which contains the patch.

Latest ColdFusion Talk (CF-Talk)

Need some fresh eyes on an application
getting server name
Windows 2008 r2 server(64 bit ) and Web services
Calculate next Tuesday 3 weeks from date
Is there an anchor in a URL String - SOLVED
Moving to Apache
Is there an anchor in a URL String
New Coldfusion User Group in the DC Area
mySQL data types - possible db bloat with text type? yes or no?
Using ## vs not using ##

Latest ColdFusion Jobs (CF-Jobs)

Coldfusion Developer - Los Angeles, CA
Cold Fusion - Jacksonville, FL
ColdFusion Developer Temp to Perm Benefits Navy Yard, VA Will Get TS/SCI
Cleared DC ColdFusion Developer Temp to Perm Benefits
Boston Sr ColdFusion Developer 1 year- perm FT Benefits vacation etc
Senior Coldfusion Developer - POLITICO - Arlington, VA
ColdFusion Web Developer - Iraq
Software Engineer-Hunt Valley, MD
Senior ColdFusion / Java / SQL Server Developer (FT with benefits)
Coldfusion Developer with Coldbox assignment with State of Oregon

Want a number like 800-ColdFusion?

My Toll Free 800 Number provides a vanity phone number service to clients who want more than just digits. How would you like 800-coldfusion?