Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026
CVE-2002-1992
CVE-2002-1992
Description
Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote attackers to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header.
Affected products
4cpe:2.3:a:macromedia:coldfusion:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:macromedia:coldfusion:*:*:*:*:*:*:*:*
- cpe:2.3:a:macromedia:coldfusion:*:*:developer:*:*:*:*:*
- cpe:2.3:a:macromedia:coldfusion_professional:*:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.