ColdFusion MX 6.1 is vulnerable to a denial of service attack if a malicious user repeatedly uploads files and interrupts each upload before it completes. A patch is available at http://www.macromedia.com/devnet/security/security_zone/mpsb04-06.html.
Leave a Reply