CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-1513

Macromedia JRun 3.0 and 3.1 allows remote attackers to obtain duplicate active user session IDs and perform actions as other users via a URL request for the web application directory without the trailing '/' (slash), as demonstrated using ctx.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.059

EPSS Ranking 90.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.iss.net/security_center/static/7680.php
http://www.macromedia.com/v1/handlers/index.cfm?ID=22260&Method=Full
http://www.securityfocus.com/bid/3600
http://www.iss.net/security_center/static/7680.php
http://www.macromedia.com/v1/handlers/index.cfm?ID=22260&Method=Full
http://www.securityfocus.com/bid/3600

Products affected by CVE-2001-1513

Macromedia » Jrun » Version: 3.0

cpe:2.3:a:macromedia:jrun:3.0
Macromedia » Jrun » Version: 3.1

cpe:2.3:a:macromedia:jrun:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-1513

Products

Pricing

Contact Us