CVE-2004-2182
Severity CVSS v4.0:
Pending analysis
Type:
CWE-287
Authentication Issues
Publication date:
31/12/2004
Last modified:
05/09/2008
Description
Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the user session ID information used by the session server.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:macromedia:jrun:4.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:macromedia:jrun:4.0:sp1:*:*:*:*:*:* | ||
cpe:2.3:a:macromedia:jrun:4.0:sp1a:*:*:*:*:*:* | ||
cpe:2.3:a:macromedia:jrun:4.0_build_61650:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page