265 matches found
CVE-2005-4472
Macromedia JRun 4 Web Server (JWS) is affected by a stack-based buffer overflow when converting long requests to wide characters, enabling remote denial of service and potentially arbitrary code execution. Affected component: JRun 4 web server (JWS). Root cause: improper handling of long requests...
Macromedia JRun Application Server platform multiple vulnerabilities
Source code leak, Web server DoS...
CVE-2005-4472
Stack-based buffer overflow in the Macromedia JRun 4 web server JWS allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long request that is not properly handled during conversion to wide characters...
CVE-2005-4473
Unspecified vulnerability in Macromedia JRun 4 web server JWS allows remote attackers to view web application source code via "a malformed URL."...
[SA18077] Macromedia JRun Server Two Vulnerabilities
TITLE: Macromedia JRun Server Two Vulnerabilities SECUNIA ADVISORY ID: SA18077 VERIFY ADVISORY: http://secunia.com/advisories/18077/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information, DoS WHERE: From remote SOFTWARE: Macromedia Jrun 4.x http://secunia.com/product/863/...
JRun mod_jrun WriteToLog buffer overflow
Added: 12/10/2005 CVE: CVE-2004-0646 BID: 11245 OSVDB: 10546 Background Macromedia JRun is a J2EE application server. modjrun is an Apache module which enables the use of JRun applications through an Apache web server. Problem A buffer overflow vulnerability in modjrun and modjrun20 allows a remo...
JRun mod_jrun WriteToLog buffer overflow
Added: 12/10/2005 CVE: CVE-2004-0646 BID: 11245 OSVDB: 10546 Background Macromedia JRun is a J2EE application server. modjrun is an Apache module which enables the use of JRun applications through an Apache web server. Problem A buffer overflow vulnerability in modjrun and modjrun20 allows a remo...
JRun mod_jrun WriteToLog buffer overflow
Added: 12/10/2005 CVE: CVE-2004-0646 BID: 11245 OSVDB: 10546 Background Macromedia JRun is a J2EE application server. modjrun is an Apache module which enables the use of JRun applications through an Apache web server. Problem A buffer overflow vulnerability in modjrun and modjrun20 allows a remo...
CVE-2002-2187
Technical details are not publicly available in the provided documents for CVE-2002-2187; monitor for updates.
CVE-2002-2186
Technical details about CVE-2002-2186 are not publicly provided in the connected documents. Monitor for updates.
CVE-2002-2186
Macromedia JRun 3.0, 3.1, and 4.0 allow remote attackers to view the source code of .JSP files via Unicode encoded character values in a URL...
CVE-2002-2187
Unknown "file disclosure" vulnerability in Macromedia JRun 3.0, 3.1, and 4.0, related to a log file or jrun.ini, with unknown impact...
JRun directory traversal
This host is running the Allaire JRun web server. Versions 2.3.3, 3.0, and 3.1 are vulnerable to a directory traversal attack. This allows a potential intruder to view the contents of any file on the system. OpenVAS Vulnerability Test $Id: DDIJRunTraversal.nasl 6046 2017-04-28 09:02:54Z teissa $...
Web Server Cross Site Scripting
The remote web server seems to be vulnerable to a Cross Site Scripting vulnerability XSS. The vulnerability is caused by the result being returned to the user when a non-existing file is requested e.g. the result contains script code provided in the request. This vulnerability would allow an...
Allaire JRun directory browsing vulnerability
Allaire JRun 3.0/3.1 under a Microsoft IIS 4.0/5.0 platform has a problem handling malformed URLs. This allows a remote user to browse the file system under the web root normally \inetpub\wwwroot. Under Windows NT/2000any service pack and IIS 4.0/5.0: - JRun 3.0 all editions - JRun 3.1 all editio...
JRun Sample Files
This host is running the Allaire JRun web server and has sample files installed. Several of the sample files that come with JRun contain serious security flaws. An attacker can use these scripts to relay web requests from this machine to another one or view sensitive configuration information...
Allaire/Macromedia JRun Directory Browsing Vulnerability (MPSB01-13) - Active Check
Allaire JRun 3.0/3.1 under a Microsoft IIS 4.0/5.0 platform has a problem handling malformed URLs. This allows a remote user to browse the file system under the web root normally \inetpub\wwwroot. SPDX-FileCopyrightText: 2005 Felix Huber Some text descriptions might be excerpted from a referenced...
Allaire/Macromedia JRun Sample Files (HTTP) - Active Check
This host is running the Allaire JRun web server and has sample files installed. SPDX-FileCopyrightText: 2001 Digital Defense Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
ServletExec 4.1 / JRun ISAPI DoS
By sending an overly long request for a .jsp file it is possible to crash the remote web server. This problem is known as the ServletExec / JRun ISAPI DoS. SPDX-FileCopyrightText: 2002 Matt Moore Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Allaire/Macromedia JRun Directory Traversal Vulnerability (MPSB01-17) - Active Check
Allaire/Macromedia JRun is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2002 Digital Defense Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...