CVE-2001-1544

3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.4%
top 40.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Macromedia Jrun
Timeline
PublishedDec 31
Latest updateApr 30

Description

Directory traversal vulnerability in Macromedia JRun Web Server (JWS) 2.3.3, 3.0 and 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP GET request.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmacromedia/jrun2.3.3, 3.0, 3.1+2

Patches

Patch: www.macromedia.comPatch: www.securityfocus.comPatch: www.macromedia.com

🔴Vulnerability Details

2
GHSA
GHSA-mq95-vxqw-cj5g: Directory traversal vulnerability in Macromedia JRun Web Server (JWS) 22022-04-30
CVEList
CVE-2001-1544: Directory traversal vulnerability in Macromedia JRun Web Server (JWS) 22005-07-14
CVE-2001-1544 (MEDIUM CVSS 5) | Directory traversal vulnerability i | cvebase.io