http://www.adobe.com/support/security/advisories/apsa13-03.html
Allows attackers to retrieve files from server; supposedly this is already being exploited. Adobe says no patch until next week (aiming for Tuesday). If you've locked down public access to critical CFIDE directories (which you already did a long time go, right? RIGHT??), you should be ok. Billy Cravens [email protected] -- -- You received this message because you are subscribed to the "Houston ColdFusion Users' Group" discussion list. To unsubscribe, send email to [email protected] For more options, visit http://groups.google.com/group/houcfug?hl=en --- You received this message because you are subscribed to the Google Groups "Houston ColdFusion Users' Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
