Vulnerabilities > Macromedia > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-08-12 | CVE-2002-0801 | Buffer Overflow vulnerability in Macromedia JRun Host Header Field Buffer overflow in the ISAPI DLL filter for Macromedia JRun 3.1 allows remote attackers to execute arbitrary code via a direct request to the filter with a long HTTP host header field in a URL for a .jsp file. | 10.0 |
2002-07-11 | CVE-2002-0665 | Authentication Bypass vulnerability in Macromedia Jrun 3.0/3.1/4.0 Macromedia JRun Administration Server allows remote attackers to bypass authentication on the login form via an extra slash (/) in the URL. | 10.0 |
2001-12-31 | CVE-2001-1514 | Unspecified vulnerability in Macromedia Coldfusion 4.5/5.0 ColdFusion 4.5 and 5, when running on Windows with the advanced security sandbox type set to "operating system," does not properly pass security context to (1) child processes created with <CFEXECUTE> and (2) child processes that call the CreateProcess function and are executed with <CFOBJECT> or end with the CFX extension, which allows attackers to execute programs with the permissions of the System account. | 10.0 |
2000-12-11 | CVE-2000-1053 | Unspecified vulnerability in Macromedia Jrun 2.3.X Allaire JRun 2.3.3 server allows remote attackers to compile and execute JSP code by inserting it via a cross-site scripting (CSS) attack and directly calling the com.livesoftware.jrun.plugins.JSP JSP servlet. | 10.0 |