Computer Security

Multiple BeaWeblogic bugs
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Multiple BeaWeblogic bugs
Published:16.09.2004
Source:SECUNIA
SecurityVulns ID:4013
Type:remote
Level:7/10
Description:Weak JNDI trees protection, insufficient authorization for few weblogic.Admin methods, weak resource protection thorugh web.xml on case-insensitive filesystems, utilities passwords stored in cleartext, cleartext password leaked during reboot, technical information leak, logon with disabled accounts, important information sent in cleartext.
Affected:BEA : Weblogic 7.0
 BEA : Weblogic 8.1
Original documentdocumentSECUNIA, [SA12524] BEA WebLogic Multiple Vulnerabilities (16.09.2004)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru