Macromedia Inc. Information for VU#703835

Macromedia JRun ISAPI DLL filter vulnerable to buffer overflow via request for long Host header field

Status

Affected

Vendor Statement

Macromedia has confirmed that this is a problem in older versions of JRun 3.0 and 3.1 and is soon to publish a security bulletin regarding this.  Visit the Macromedia security zone site at http://www.macromedia.com/security for more information.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.