Adobe has released patches to address multiple security vulnerabilities in its ColdFusion web development and JRun Java administration tools.
The updates fix flaws in both applications that could allow an attacker to take control of a targeted system and remotely execute code.
The ColdFusion update addresses five vulnerabilities in versions 7.0.2, 8.0 and 8.0.1 of the web application development platform. The flaws could allow escalation of privileges, information disclosure or remote code execution.
The JRun patch covers two vulnerabilities, one that could allow an attacker to remotely execute code via a cross-site scripting attack, and one that could allow for information disclosure.
Adobe said that the issues are considered critical, and advised users and administrators to install the updates immediately.
The updates from Adobe come one week after Microsoft released its monthly security update, which included fixes for Windows and Office, including five critical vulnerabilities.
Adobe rolls out critical security updates
By
Shaun Nichols
on Aug 20, 2009 3:57PM
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Tech For Good program gives purpose and strong business outcomes
How NinjaOne Is Supporting The Channel As It Builds An Innovative Global Partner Program
Channel can help lead customers to boosting workplace wellbeing with professional headsets
Secure, integrated platforms enable MSPs to focus bringing powerful solutions to customers
Build cybersecurity capability with award winning Fortinet training from Ingram Micro
Sponsored Whitepapers
-1.jpg&w=100&c=1&s=0)
Stop Fraud Before It Starts: A Must-Read Guide for Safer Customer Communications
The Cybersecurity Playbook for Partners in Asia Pacific and Japan
Pulseway Essential Eight Framework
7 Best Practices For Implementing Human Risk Management
2025 State of Machine Identity Security Report
.png&w=100&c=1&s=0)
