Adobe Security Bulletin

Release date: December 13, 2016

Vulnerability identifier: APSB16-44

Priority: 2

CVE number: CVE-2016-7887

Platforms: Windows, Linux and Macintosh

Adobe has released a security update for ColdFusion Builder for Windows, Linux, and Macintosh. This update resolves an important vulnerability that could lead to information disclosure (CVE-2016-7887).

Product	Affected Versions	Platform
ColdFusion Builder	2016 Update 2 and earlier versions 3.0.3 and earlier versions	Windows, Linux and Macintosh

Product

Affected Versions

Platform

ColdFusion Builder

2016 Update 2 and earlier versions

3.0.3 and earlier versions

Windows, Linux and Macintosh

3.0.3 and earlier versions

For more information on ColdFusion Builder, please refer to this resource.

Adobe categorizes this update with the following priority rating and recommends users update their installations to the newest versions:

Product	Updated Version	Platform	Priority rating	Availability
ColdFusion Builder 2016	Update 3	Windows, Linux and Macintosh	2	Tech note
ColdFusion Builder 3.0	3.0.3 Hotfix	Windows, Linux and Macintosh	2	Tech note

This update resolves an important vulnerability that could lead to information disclosure (CVE-2016-7887).

Adobe would like to thank Alexander Hass of Hass IT-Consulting for reporting this issue (CVE-2016-7887) and for working with Adobe to help protect our customers.

Adobe Security Bulletin

Security update available for ColdFusion Builder

Summary

Affected Versions

Solution

Vulnerability Details

Acknowledgements

Ask the Community

Contact Us