The link in the email below relates to the latest security bulletin for an incident reported by NGSSoftware -- and has generated some interested on the web.
This issue was reported to Macromedia by NGSSoftware and was corrected in JRun 3.1 build 26414 and JRun 3.0 build 25232 (both were released to the public November 2001). Users who are running JRun server versions older than JRun 3.0 25232 and JRun 3.1 26414 are advised to upgrade their JRun server's immediately. A technote describing this vulnerability and links to the patched builds is available here: http://www.macromedia.com/v1/handlers/index.cfm?ID=22994. Note, JRun 4.0 is not vulnerable to this defect. Eric Eric Anderson Senior Engineer JRun Product Support Macromedia Incorporated -----Original Message----- From: James A. Rome [mailto:[EMAIL PROTECTED]] Sent: Tuesday, June 04, 2002 1:12 PM To: JRun-Talk Subject: Re: JRun-Talk-List V1 #12 Since there are no dates on the pages, it is hard to tell which critical vulnerability they patch! The "news" is buzzing about a new JRun vulnerability, is this it? How do we tell? > > ---------------------------------------------------------------------- > >> > You can find security information here: > > http://www.macromedia.com/v1/developer/securityzone/ > > The patch is linked off of this page: > > http://www.macromedia.com/v1/handlers/index.cfm?ID=22994 > > > > Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists ______________________________________________________________________ This list and all House of Fusion resources hosted by CFHosting.com. The place for dependable ColdFusion Hosting. Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
