Really, I do not know where to start on.
Too complicated to me, and no time for this,
And afraid to make a mistake in all the steps to go.
I am developping sites and products, I am not a system enginneer.
I will look to get someone from the Community to help me.
For the moment the Server is fine, stable, no more bad upload coming.
But the vulnerabity is still there.
As said, it comes from the product, I do not understand why that is the customer who pay
the consequences ? (4 weeks lost in understanding what happens, and trying to stop the hacking).
Also, I use the French Adobe site, and trying to get the CF10 upgrade from CF9.0
This is fully unclear, I will try to call them by phone.
I have seen also a problem with the CGI variable PATH_INFO missing in CF10 with IIS7 ?
Thanks for any help from Adobe.