Adobe has released patches to address multiple security vulnerabilities in its ColdFusion web development and JRun Java administration tools.
The updates fix flaws in both applications that could allow an attacker to take control of a targeted system and remotely execute code.
The ColdFusion update addresses five vulnerabilities in versions 7.0.2, 8.0 and 8.0.1 of the web application development platform. The flaws could allow escalation of privileges, information disclosure or remote code execution.
The JRun patch covers two vulnerabilities, one that could allow an attacker to remotely execute code via a cross-site scripting attack, and one that could allow for information disclosure.
Adobe said that the issues are considered critical, and advised users and administrators to install the updates immediately.
The updates from Adobe come one week after Microsoft released its monthly security update, which included fixes for Windows and Office, including five critical vulnerabilities.
Adobe rolls out critical security updates
By
Shaun Nichols
on Aug 20, 2009 3:57PM
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Ingram Micro Ushers in the Age of Ultra
Secure, integrated platforms enable MSPs to focus bringing powerful solutions to customers
Build cybersecurity capability with award winning Fortinet training from Ingram Micro
Channel can help lead customers to boosting workplace wellbeing with professional headsets
Kaseya Dattocon APAC 2024 is Back
Sponsored Whitepapers
_page-0001.jpg&w=100&c=1&s=0)
F5’s 2025 Report: Unlocking AI Success by Conquering App & API Complexity
Driving Innovation and Sustainability through Hybrid IT and AI Solutions
Easing the burden of Microsoft CSP management
-1.jpg&w=100&c=1&s=0)
Stop Fraud Before It Starts: A Must-Read Guide for Safer Customer Communications
The Cybersecurity Playbook for Partners in Asia Pacific and Japan
.png&w=100&c=1&s=0)
