Macromedia Product Feeds

« ColdFusion MX 6.1: Connection error when configuring a remote Microsoft Access database | Main | cfhttp on ColdFusion MX can periodically fail due to bug in Sun 1.3 and 1.4 JVM's »

July 15, 2005

MPSB05-05 - Security Patch available for JRun 4.0 token collision

(Security Bulletin) Under high load, JRun may generate two sessions with the same authentication token. This cannot be controlled by an attacker and it occurs very rarely, but it may cause two authenticated users to share information from a single user session.

Posted by dmorris at July 15, 2005 5:16 AM

Related Entries

• Multiple Vulnerabilities in Adobe Flash Player 8.0.24.0 and Earlier Versions
• ColdFusion Sandbox Security vulnerability
• MPSB05-12 Sandbox Security and CFMAIL Vulnerability in ColdFusion MX 6.X
• MPSB05-10 Security Patch for Insufficient Validation in Breeze Communication Server and Breeze Live Server
• MPSB05-09 Security Patch for Insufficient Validation in Flash Communication Server