Adobe has released patches to address multiple security vulnerabilities in its ColdFusion web development and JRun Java administration tools.
The updates fix flaws in both applications that could allow an attacker to take control of a targeted system and remotely execute code.
The ColdFusion update addresses five vulnerabilities in versions 7.0.2, 8.0 and 8.0.1 of the web application development platform. The flaws could allow escalation of privileges, information disclosure or remote code execution.
The JRun patch covers two vulnerabilities, one that could allow an attacker to remotely execute code via a cross-site scripting attack, and one that could allow for information disclosure.
Adobe said that the issues are considered critical, and advised users and administrators to install the updates immediately.
The updates from Adobe come one week after Microsoft released its monthly security update, which included fixes for Windows and Office, including five critical vulnerabilities.
Adobe rolls out critical security updates
By
Shaun Nichols
on Aug 20, 2009 3:57PM
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Promoted Content
From Insight to Opportunity: How SMB Service Demand is Shaping the Next Growth Wave for Partners
_(11).jpg&h=142&w=230&c=1&s=1)
The Compliance Dilemma for Technology Partners: Risk, Revenue, and Reputation
Channel faces AI-fuelled risk as partners lag on data resilience, Dicker Data summit told
Tech Data: Driving partner success in a digital-first economy
Tech Buying Budgets for SMBs on the Rise
.jpg&w=100&c=1&s=0)
_(8).jpg&w=100&c=1&s=0)
