VULHUB ™

Macromedia JRun is prone to session fixation vulnerability. This issue exists in the Management Console. The application is reported prone to session fixation vulnerability. This attack can allow an attacker to set a session ID in a user's browser and hijack the user's session upon authentication to JRun. This issue can allow remote attackers to bypass authentication checks, and possibly allow them to gain administrative access to the web application. This issue was originally reported in BID 11245 (Macromedia JRun Multiple Remote Vulnerabilities). It is now being separated and assigned a new BID.

Macromedia JRun is prone to session fixation vulnerability. This issue exists in the Management Console. The application is reported prone to session fixation vulnerability. This attack can allow an attacker to set a session ID in a user's browser and hijack the user's session upon authentication to JRun. This issue can allow remote attackers to bypass authentication checks, and possibly allow them to gain administrative access to the web application. This issue was originally reported in BID 11245 (Macromedia JRun Multiple Remote Vulnerabilities). It is now being separated and assigned a new BID.