Required CVE Record Information
Description
BEA WebLogic Server and WebLogic Express 7.0 through 7.0 Service Pack 4, and 8.1 through 8.1 Service Pack 2, allows attackers to obtain the username and password for booting the server by directly accessing certain internal methods.
References 7 Total
- securityfocus.com: 10133 vdb-entry
- http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_55.00.jsp
- osvdb.org: 5296 vdb-entry
- securitytracker.com: 1009766 vdb-entry
- exchange.xforce.ibmcloud.com: bea-gain-privileges(15865) vdb-entry
- secunia.com: 11359 third-party-advisory
- kb.cert.org: VU#352110 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 7 Total
- securityfocus.com: 10133 vdb-entryx_transferred
- http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_55.00.jsp x_transferred
- osvdb.org: 5296 vdb-entryx_transferred
- securitytracker.com: 1009766 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: bea-gain-privileges(15865) vdb-entryx_transferred
- secunia.com: 11359 third-party-advisoryx_transferred
- kb.cert.org: VU#352110 third-party-advisoryx_transferred