Intrusion Prevention

Adobe.ColdFusion.Scheduled.Task.Arbitrary.File.Upload

Description

This indicates an attack attempt against an arbitrary File Upload vulnerability in the Adobe ColdFusion.
The vulnerability is caused by an error when the vulnerable software handles a malicious HTTP request with a crafted URI. It allows a remote attacker to upload an arbitrary file via sending a crafted URI to a vulnerable application.

Affected Products

Adobe ColdFusion 10
Adobe ColdFusion 9
Adobe ColdFusion 8
Adobe ColdFusion 7

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's website for suggested solution.
http://helpx.adobe.com/coldfusion/kb/coldfusion-security-hotfix-apsb13-03.html