Servers Macromedia Patches ColdFusion MX DoS Vulnerability

Macromedia Patches ColdFusion MX DoS Vulnerability




Graphics design software specialist Macromedia has rolled out a fix for a denial-of-service vulnerability found in
its ColdFusion MX 6.1 product suite.

Macromedia Monday rolled out a patch to fix a denial-of-service vulnerability found in its ColdFusion MX 6.1 product suite.

The San Francisco-based firm said the flaw affected all editions of
ColdFusion MX 6.1 and all versions of ColdFusion MX 6.1 J2EE. In an advisory, Macromedia tagged the issue as “important” and recommended
users immediately apply the accompanying patch.

ColdFusion MX, formerly known as “Neo,” is a key part of Macromedia MX,
an integrated collection of tool, server, and client technologies developed
to function as a single environment.

ColdFusion MX is a favorite for developers looking to make use of its
function as both a stand-alone server and an overlay on top of Java
application servers that enables Web services and a host of other
capabilities.

But security bugs have followed the product around, with the latest
centering around the way ColdFusion MX handles file uploads. “When file
uploads to ColdFusion MX via an HTML form are started, but are interrupted
before they complete – disk space on the server may not be reclaimed when
the ColdFusion MX template finishes processing,” the company explained.

Just last month, Macromedia released a series of
patches
to plug security holes in its flagship Macromedia MX 2004
products. Those flaws vulnerabilities were found in products for the Mac OS
X platform and caused privilege escalation problems.

This article was orignally published on internetnews.com.

Latest Posts

Proxmox vs VMware Comparison

Proxmox virtual machines (VM) are highly popular with home server aficionados, whereas VMware sits squarely at the front of the enterprise VM market. Both...

What is Load Balancing?

Load balancing is a technique that ensures an organization's server does not get overloaded with traffic. With load balancing measures in place, workloads and...

Installing and Activating Hyper-V Linux Integration Services

Editor's Note: Updated to reflect changes with the Hyper-V Linux Integration Services 4.3 release. Microsoft developers have designed components that help in improving the performance of...

What is a Hypervisor Server?

At its most basic, a hypervisor is the “manager” of a software-hardware stack. The term “hypervisor” derives from the word “supervisor.” What is a Hypervisor? When...

HPE SimpliVity 380 Server Review

The HPE SimpliVity 380 Server was designed to deliver the high performance required by enterprise data centers in a simplified package. One of the...

Related Stories