CVE-2000-1053

Published: Nov 29, 2000

Modified: Aug 8, 2024

PUBLISHED

Description

Allaire JRun 2.3.3 server allows remote attackers to compile and execute JSP code by inserting it via a cross-site scripting (CSS) attack and directly calling the com.livesoftware.jrun.plugins.JSP JSP servlet.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

ASB00-029

vendor-advisory

x_refsource_ALLAIRE

20001023 Allaire JRUN 2.3 Remote command execution

mailing-list

x_refsource_BUGTRAQ

allaire-jrun-jsp-execute(5406)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2000-1053

Description

Affected Products

References