Vulnerability in N/a
CVE-2004-0646
Buffer overflow in the WriteToLog function for JRun 3.0 through 4.0 web server connectors, such as (1) mod_jrun and (2) mod_jrun20 for Apache, with verbose logging enabled, allows remote attackers to execute arbitrary code via a long HTTP…
EPSS: 0.709 (98.7th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 20040929 iDEFENSE Security Advisory 09.29.04 - Macromedia JRun 4 mod_jrun Apache Module Buffer Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
- 12647 (x_refsource_SECUNIA, third-party-advisory)
- 11245 (vdb-entry, x_refsource_BID)
- VU#990200 (x_refsource_CERT-VN, third-party-advisory)
- coldfusion-jrun-verbose-bo(17485) (vdb-entry, x_refsource_XF)
- www.macromedia.com/devnet/security/security_zone/mpsb04-08.html (x_refsource_CONFIRM)
- www.macromedia.com/devnet/security/security_zone/mpsb04-09.html (x_refsource_CONFIRM)