Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > December 2005 > Adobe Security Bulletins: - - Flash Media Server - - ColdFusion MX 6.X - - JRun 4.0 server - - ColdFusion MX 7

December 2005

Adobe Security Bulletins: - - Flash Media Server - - ColdFusion MX 6.X - - JRun 4.0 server - - ColdFusion MX 7

ID: 01108
Ref: 1040/2005
Date: 16 December 2005:09:09:08
Version: 1
Title: Adobe Security Bulletins: - - Flash Media Server - - ColdFusion MX 6.X - - JRun 4.0 server - - ColdFusion MX 7
Abstract: Adobe Security Bulletins: - - Flash Media Server - - ColdFusion MX 6.X - - JRun 4.0 server - - ColdFusion MX 7
Vendors affected: Adobe
Operating systems affected: Adobe
Applications affected: Adobe
Title
=====

Adobe Security Bulletins:

- - Flash Media Server
- - ColdFusion MX 6.X
- - JRun 4.0 server
- - ColdFusion MX 7

Detail
======


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Adobe Security Bulletins:

- - Flash Media Server
- - ColdFusion MX 6.X
- - JRun 4.0 server
- - ColdFusion MX 7
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

MPSB05-11 Administrator Interface Denial of Service
Vulnerability in Flash Media Server

Originally posted: December 15, 2005

Summary:
This bulletin addresses a publicly reported security issue
with Flash Media Server.

Affected Software Versions:
* Flash Media Server 2.0
* Flash Media Server 1.5

Severity Rating:
Adobe categorizes this issue as important and recommends
users apply this workaround to their installations:
http://www.macromedia.com/go/mpsb05-11

Learn more:
http://www.macromedia.com/go/mpsb05-11

~~~~~~~

MPSB05-12 Sandbox Security and CFMAIL Vulnerability in
ColdFusion MX 6.X

Originally posted: December 15, 2005

Summary:
This bulletin addresses two (2) privately reported security
issues with ColdFusion 6.X.

Affected Software Versions:
ColdFusion MX 6.0
ColdFusion MX 6.1
ColdFusion MX 6.1 with JRun

Severity Rating:
Adobe categorizes this issue as a important issue and
recommends users patch their installations.

Learn more:
http://www.macromedia.com/go/mpsb05-12

~~~~~~~

MPSB05-13 Cumulative Security Updater for JRun 4.0
server

Originally posted: December 15, 2005

Summary:
This is a cumulative security updater for JRun server
that includes all previously released patches for 4.0.

Affected Software Versions:
JRun 4.0 (all editions)

Severity Rating:
Adobe categorizes this issue as a important issue
and recommends users patch their installations.

Learn more:
http://www.macromedia.com/go/mpsb05-13

~~~~~~~

MPSB05-14 Cumulative Security Updater for ColdFusion MX 7

Originally posted: December 15, 2005

Summary:
This is a cumulative security updater for ColdFusion MX 7
server that includes all previously released patches.

Affected Software Versions:
ColdFusion MX 7.0

Severity Rating:
Adobe categorizes this issue as a important issue and
recommends users patch their installations.

Learn more:
http://www.macromedia.com/go/mpsb05-14


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ANY INFORMATION, PATCHES, DOWNLOADS, WORKAROUNDS, OR FIXES
PROVIDED BY ADOBE IN THIS BULLETIN ARE PROVIDED "AS IS"
WITHOUT WARRANTY OF ANY KIND. ADOBE AND ITS SUPPLIERS
DISCLAIM ALL WARRANTIES, WHETHER EXPRESS OR IMPLIED OR
OTHERWISE, INCLUDING THE WARRANTIES OF MERCHANTABILITY
AND FITNESS FOR A PARTICULAR PURPOSE. ALSO, THERE IS NO
WARRANTY OF NON-INFRINGEMENT, TITLE, OR QUIET ENJOYMENT.
(USA ONLY) SOME STATES DO NOT ALLOW THE EXCLUSION OF
IMPLIED WARRANTIES, SO THE ABOVE EXCLUSION MAY NOT APPLY
TO YOU. IN NO EVENT SHALL ADOBE, INC. OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING, WITHOUT
LIMITATION, DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL,
SPECIAL, PUNITIVE, COVER, LOSS OF PROFITS, BUSINESS
INTERRUPTION, OR THE LIKE, OR LOSS OF BUSINESS DAMAGES,
BASED ON ANY THEORY OF LIABILITY INCLUDING BREACH OF
CONTRACT, BREACH OF WARRANTY, TORT (INCLUDING NEGLIGENCE),
PRODUCT LIABILITY OR OTHERWISE, EVEN IF ADOBE, INC. OR ITS
SUPPLIERS OR THEIR REPRESENTATIVES HAVE BEEN ADVISED OF
THE POSSIBILITY OF SUCH DAMAGES. (USA ONLY) SOME STATES
DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR
CONSEQUENTIAL OR INCIDENTAL DAMAGES, SO THE ABOVE EXCLUSION
OR LIMITATION MAY NOT APPLY TO YOU AND YOU MAY ALSO HAVE
OTHER LEGAL RIGHTS THAT VARY FROM STATE TO STATE.

Adobe reserves the right, from time to time, to update
the information in this document with current information.


Your privacy is important to us. Please review Adobe's online
Privacy Policy by clicking here:
http://www.adobe.com/misc/privacy.html
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |