CVE-2012-2048 - Fixlet Required

(imported topic written by Nitin_Gupta91)

Hello,

Kindly release a fixlet for CVE-2012-2048.

Security update: Hotfix available for ColdFusion 10 and earlier

Release date: September 11, 2012

Vulnerability identifier: APSB12-21

Priority: 2

CVE number: CVE-2012-2048

Platform: All

SUMMARY

Adobe has released a security hotfix for ColdFusion 10 and earlier versions for Windows, Macintosh and UNIX. This update resolves a vulnerability which could result in a Denial of Service condition. Adobe recommends users update their product installation using the instructions provided in the “Solution” section below.

AFFECTED SOFTWARE VERSIONS

ColdFusion 10, 9.0.2, 9.0.1, 9.0, 8.0.1, and 8.0 for Windows, Macintosh and UNIX

SOLUTION

Adobe recommends ColdFusion customers update their installation using the instructions provided in the technote: http://helpx.adobe.com/coldfusion/kb/coldfusion-security-hotfix-apsb12-21.html.

SEVERITY RATING

Adobe categorizes this update with the following priority rating and recommends users update their installation to the newest version:

Product

Updated Version

Platform

Priority Rating

ColdFusion 10, 9.0.2, 9.0.1, 9.0, 8.0.1, 8.0 Windows, Macintosh and UNIX

2

This update addresses an important vulnerability in the software.

DETAILS

Adobe has released a security hotfix for ColdFusion 10 and earlier versions for Windows, Macintosh and UNIX. This update resolves a vulnerability which could result in a Denial of Service condition. Adobe recommends users update their product installation using the instructions provided in the “Solution” section above.

This update resolves a vulnerability which could result in a Denial of Service condition (CVE-2012-2048).

(imported comment written by Xie_Ran91)

Hi,

As of now, we don’t support any Adobe security updates other than Flash Player, Reader, Acrobat and Shockwave Player. It would be nice if you make a feature request (the formal process) and the product manager will estimate the needs accordingly.

Thanks,

Xie Ran