Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
macromedia jrun vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4472
Stack-based buffer overflow in the Macromedia JRun 4 web server (JWS) allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long request that is not properly handled during conversion to wide characters.
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
NA
CVE-2005-4473
Unspecified vulnerability in Macromedia JRun 4 web server (JWS) allows remote malicious users to view web application source code via "a malformed URL."
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
NA
CVE-2005-4342
ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote malicious users to "bypass security controls," aka "JRun Clustered Sandbox Secu...
Macromedia Coldfusion 6.1
Macromedia Coldfusion 7.0
Macromedia Coldfusion 6.0
NA
CVE-2005-4343
Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 allows remote malicious users to attach arbitrary files and send mail via a crafted Subject field, which is not properly handled by the CFMAIL tag in applications that use ColdFusion, aka "CFMAIL inje...
Macromedia Coldfusion 6.1
Macromedia Coldfusion 7.0
Macromedia Coldfusion 6.0
NA
CVE-2005-2306
Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when under heavy load, causes JRun to assign a duplicate authentication token to multiple sessions, which could allow authenticated users to gain privileges as other users.
Macromedia Coldfusion 6.1
Macromedia Coldfusion 7.0
Macromedia Jrun 4.0
NA
CVE-2005-1555
Cross-site scripting (XSS) vulnerability in the JRun Web Server in ColdFusion MX 7.0 allows remote malicious users to inject arbitrary script or HTML via the URL, which is not properly quoted in the resulting default 404 error page.
Macromedia Coldfusion 7.0
NA
CVE-2004-2182
Session fixation vulnerability in Macromedia JRun 4.0 allows remote malicious users to hijack user sessions by pre-setting the user session ID information used by the session server.
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
NA
CVE-2004-1477
Cross-site scripting (XSS) vulnerability in the Management Console in JRun 4.0 allows remote malicious users to execute arbitrary web script or HTML and possibly hijack a user's session.
Macromedia Jrun 3.1
Macromedia Jrun 3.0
Macromedia Jrun 4.0
NA
CVE-2004-1478
JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote malicious users to perform a session fixation attack and hijack a user's HTTP session.
Hitachi Cosminexus Enterprise 01 01 1
Hitachi Cosminexus Enterprise 01 02 2
Macromedia Jrun 3.1
Macromedia Jrun 3.0
Macromedia Coldfusion 6.1
Macromedia Coldfusion 6.0
Hitachi Cosminexus Server Web 01-01 2
Hitachi Cosminexus Server Web 01-01 1
Macromedia Jrun 4.0
NA
CVE-2004-0646
Buffer overflow in the WriteToLog function for JRun 3.0 up to and including 4.0 web server connectors, such as (1) mod_jrun and (2) mod_jrun20 for Apache, with verbose logging enabled, allows remote malicious users to execute arbitrary code via a long HTTP header Content-Type fie...
Macromedia Jrun 3.1
Macromedia Jrun 3.0
Macromedia Coldfusion 6.1
Macromedia Coldfusion 6.0
Macromedia Jrun 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »