Heap-based buffer overflow in the error-handling mechanism for the IIS
ISAPI handler in Macromedia JRun 4.0 and earlier allows remote
attackers to execute arbitrary via an HTTP GET request with a long
.jsp file name.
Note:References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20021112 EEYE: Macromedia ColdFusion/JRun Remote SYSTEM Buffer Overflow Vulnerabilities
Disclaimer: The entry creation date may reflect when
the CVE-ID was allocated or reserved, and does not
necessarily indicate when this vulnerability was
discovered, shared with the affected vendor, publicly
disclosed, or updated in CVE.