VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2182

CVE-2004-2182

Description

Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the user session ID information used by the session server.

Affected products

5
  • Macromedia/Jrun5 versions
    cpe:2.3:a:macromedia:jrun:4.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:macromedia:jrun:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:macromedia:jrun:4.0_build_61650:*:*:*:*:*:*:*
    • cpe:2.3:a:macromedia:jrun:4.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:macromedia:jrun:4.0:sp1a:*:*:*:*:*:*
    • (no CPE)range: =4.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.