Adobe has released patches to address multiple security vulnerabilities in its ColdFusion web development and JRun Java administration tools.
The updates fix flaws in both applications that could allow an attacker to take control of a targeted system and remotely execute code.
The ColdFusion update addresses five vulnerabilities in versions 7.0.2, 8.0 and 8.0.1 of the web application development platform. The flaws could allow escalation of privileges, information disclosure or remote code execution.
The JRun patch covers two vulnerabilities, one that could allow an attacker to remotely execute code via a cross-site scripting attack, and one that could allow for information disclosure.
Adobe said that the issues are considered critical, and advised users and administrators to install the updates immediately.
The updates from Adobe come one week after Microsoft released its monthly security update, which included fixes for Windows and Office, including five critical vulnerabilities.
Adobe rolls out critical security updates
Got a news tip for our journalists? Share it with us anonymously here.
Add techpartner.news as your trusted source
Partner Content
In the memory market that AI just broke, here’s what you must do now
Now is the time for the channel to push the hardware refresh
_(30).jpg&h=142&w=230&c=1&s=1)
Promoted Content
Why Australia’s Industrial Leaders Are Turning to Dynamic Aspect for Dynamics 365 Business Central
_(25).jpg&h=142&w=230&c=1&s=1)
Shortfalls in cyber expertise deepen the cost and complexity of security incidents
Promoted Content
Jabra launches PanaCast U30 video bar for easier BYOD meetings
.jpg&w=100&c=1&s=0)
.jpg&w=100&c=1&s=0){kind=logo}
.jpg&w=100&c=1&s=0)
