National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:macromedia:jrun:3.0:sp1
There are 23 matching records.
Displaying matches 21 through 23.
Vuln ID Summary CVSS Severity
CVE-2001-0179

Allaire JRun 3.0 allows remote attackers to list contents of the WEB-INF directory, and the web.xml file in the WEB-INF directory, via a malformed URL that contains a "."

Published: May 03, 2001; 12:00:00 AM -04:00
    V2: 5.0 MEDIUM
CVE-2000-1049

Allaire JRun 3.0 http servlet server allows remote attackers to cause a denial of service via a URL that contains a long string of "." characters.

Published: December 11, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1050

Allaire JRun 3.0 http servlet server allows remote attackers to directly access the WEB-INF directory via a URL request that contains an extra "/" in the beginning of the request (aka the "extra leading slash").

Published: December 11, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM