Copy link to clipboard
Copied
Hi everyone,
I'm going thru and updating all our aging MX7 installs at work, with the latest hotfixes and patches.
That has all gone fine, but the two hotfixes that I need seems to no longer be available, and I am wondering if any of you have the files?
This is the link to hotfix I am after, specifically,
CVE-2009-1872 and CVE-2009-1877 Hotfix for ColdFusion 7.0.2
CVE-2009-1875 Hotfix for ColdFusion 7.0.2
http://www.adobe.com/support/security/bulletins/apsb09-12.html
The links for the hotfixes are not working.
http://download.macromedia.com/pub/coldfusion/updates/702/7_0_2.zip
http://download.macromedia.com/pub/coldfusion/updates/702/CF7.0.2.zip
Do any of you have zip files floating around, or is someone from Adobe able to fix the links?
I realise it's a very old hotfix, and support for it has probably stopped, but I figured I may as well try to find it
Thanks heaps.
Leith
Copy link to clipboard
Copied
Can Adobe investigate this?
Copy link to clipboard
Copied
I need this patch too. Adobe will you please make this patch availiable again? Thank you. If not this one then a replacement one that will fix the vulnerability.
Copy link to clipboard
Copied
Hi,
Thank you for letting us know.
I am looking into this and will forward this to concern team.
Regards,
Priyank
Copy link to clipboard
Copied
Any word on this?
Copy link to clipboard
Copied
I need all the updates/hotfixes for MX7 please repair the broken links. Did anyone find the files? If so Please Please reply...
Copy link to clipboard
Copied
Any update on this?
Copy link to clipboard
Copied
Hi,
Due to the lack of action / care by Adobe, I've had to find a way to mitigate this Cold Fusion security
issue (ie lack of the Cold Fusion Hotfix name: CVE-2009-1875).
Add the following to the Apache web server config:
<VirtualHost *:80>
<Directory /var/www/html>
AllowOverride AuthConfig Indexes Limit Options FileInfo
RewriteEngine on
RewriteCond %{REQUEST_URI} %\d\d
RewriteRule ^(.*)(%\d+)(.*)$ $1$3
</Directory>
</VirtualHost>
With this config in place, the following URL:
http://localhost/index%2500.cfm
Will redirect to:
Enjoy!
Copy link to clipboard
Copied
Thanks, Caleb. Unfortunately, our server is Windows-based. Do you happen to have a solution for that? 🙂
Copy link to clipboard
Copied
I don't I'm sorry
I'm Linux only...