A Security Advisory (APSA13-01) has been posted in regards to security issues in ColdFusion for Windows, Macintosh and UNIX. There are reports that these vulnerabilities are being exploited in the wild against ColdFusion customers. Information regarding these vulnerabilities, including mitigation recommendations, is provided in the Security Advisory. We are in the process of finalizing a fix for the issues and expect a hotfix will be available on January 15, 2013.
This posting is provided “AS IS” with no warranties and confers no rights.