Signedness error in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to execute arbitrary code via long (1) Username, (2) Password, or (3) Hostname entries.
http://www.securityfocus.com/bid/5321
http://www.iss.net/security_center/static/9684.php
http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.html