Reportedly Macromedia ColdFusion MX is affected by privilege escalation vulnerability when handling templates. This issue is due to an access validation error that allows a user to perform actions with administrator privileges. An attacker may exploit this issue to gain administrative privileges on a computer running the vulnerable application.There is even some exploit code available... This exploit is primarily a concern to sites on shared CFMX servers. I wonder though, if this exploit will work under all configurations. It seems to me that multi-instance configurations could/should be immune. If anyone has more info on this, please feel free to chare in the comments. Hat tip to Bump for sending me the link to this.