Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0801

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-0801
Last Modified 05 Sep 2008 04:28:59
Published 12 Aug 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0801

Summary

Buffer overflow in the ISAPI DLL filter for Macromedia JRun 3.1 allows remote attackers to execute arbitrary code via a direct request to the filter with a long HTTP host header field in a URL for a .jsp file.

Vulnerable Systems

Application

  • Macromedia Jrun 3.0

  • Macromedia Jrun 3.1


References

CERT-VN - VU#703835

CERT - CA-2002-14

BID - 4873

XF - jrun-isapi-host-bo(9194)

OSVDB - 5082

BUGTRAQ - 20020529 Addendum to advisory #NISR29052002 (JRun buffer overflow)

BUGTRAQ - 20020529 Macromedia JRUN Buffer overflow vulnerability (#NISR29052002)

VULNWATCH - 20020529 [VulnWatch] FW: Macromedia JRUN Buffer overflow vulnerability (#NISR29052002)


Last Updated: 27 May 2016 10:37:04