CVE-2002-1992 Information

Description

Buffer overflow in jrun.dll in ColdFusion MX when used with IIS 4 or 5 allows remote attackers to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header.

Reference

http://www.iss.net/security_center/static/9460.php http://www.macromedia.com/v1/handlers/index.cfm?ID=23161 http://www.securityfocus.com/bid/5121