Skip to main content
A
Anonymous
May 11, 2012
Question

CF Security Patches

  • May 11, 2012
  • 1 reply
  • 984 views

How can missing security patches for Cold Fusion 8.0.0.176276 be identified?  Want to ensure all security patches are in place.  Thanks

This topic has been closed for replies.

1 reply

pete_freitag
pete_freitag
Participating Frequently
May 11, 2012

One way is to run http://hackmycf.com/ on it, the paid service does a bit more inspection. The paid service can tell you 100% if you have all security patches for CF 9.0.1 for 8.0.0 it may not find all.

A
Anonymous
May 11, 2012

Thanks Pete,

   Are there any tools built into CF that can be used.  The organization that owns the server won't allow tools they have not pre-approved to be used. 

pete_freitag
pete_freitag
Participating Frequently
May 11, 2012

Nothing builtin to CF8 will tell you - the best way to get an idea is to look at the lib\updates folder and see what jar files are in there from that you can determine which patches have been applied (though some patches did not require placing a jar in the updates, they require updating files in CFIDE or elsewhere).  CF10 will have a hotfix updater builtin (you can checkout the public beta now) which will keep track of which have been installed.

Terms & ConditionsAccessibility statement
Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices