Vulnerability in Macromedia Jrun

CVE-2004-1477

Cross-site scripting (XSS) vulnerability in the Management Console in JRun 4.0 allows remote attackers to execute arbitrary web script or HTML and possibly hijack a user's session.

EPSS: 0.026 (83.4th percentile) — read the EPSS interpretation.

Affected products

Macromedia Jrun — versions 3.0, 3.1, 4.0
N/a — versions n/a

References

cve@mitre.org (US Government Resource, x_refsource_CERT-VN, Patch, Third Party Advisory, third-party-advisory)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (vdb-entry, x_refsource_XF)
cve@mitre.org (Patch, vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)