Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Jrun
(Macromedia)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 34 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-12-11 | CVE-2000-1050 | Allaire JRun 3.0 http servlet server allows remote attackers to directly access the WEB-INF directory via a URL request that contains an extra "/" in the beginning of the request (aka the "extra leading slash"). | Jrun | N/A | ||
| 2000-12-11 | CVE-2000-1049 | Allaire JRun 3.0 http servlet server allows remote attackers to cause a denial of service via a URL that contains a long string of "." characters. | Jrun | N/A | ||
| 2000-06-22 | CVE-2000-0540 | JSP sample files in Allaire JRun 2.3.x allow remote attackers to access arbitrary files (e.g. via viewsource.jsp) or obtain configuration information. | Jrun | N/A | ||
| 2000-06-22 | CVE-2000-0539 | Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet. | Jrun | N/A |