| VID |
22368 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
Servlet |
| Detailed Description |
The BEA WebLogic server, according to its banner, has multiple vulnerabilities. BEA WebLogic is a server for developing e-commerce and Internet applications using Java-based enterprise applications. BEA WebLogic Server and Express versions 6.x and 7.0 through SP6 and 8.1 through SP4 are vulnerable to multiple vulnerabilities, which can be exploited by a remote attacker to conduct buffer overflow, denial of service, unauthorized access, cross-site scripting, and information disclosure attacks.
* Note: This check solely relied on the banner of the remote HTTP server to assess this vulnerability, so this might be a false positive.
* References:
http://dev2dev.bea.com/advisoriesnotifications/
http://www.appsecinc.com/resources/alerts/general/BEA-001.html
http://www.appsecinc.com/resources/alerts/general/BEA-002.html
http://www.securitytracker.com/alerts/2005/Feb/1013177.html
http://www.securitytracker.com/alerts/2005/Apr/1013817.html
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA05-74.00.jsp
http://www.frsirt.com/english/advisories/2005/0604
http://www.frsirt.com/english/advisories/2005/0605
http://secunia.com/advisories/15486
* Platforms Affected:
BEA WebLogic, Inc., WebLogic Server and Express 6.x
BEA WebLogic, Inc., WebLogic Server and Express 7.0 to SP6
BEA WebLogic, Inc., WebLogic Server and Express 8.1 to SP4
Any operating system Any version |
| Recommendation |
For WebLogic Server and Express 7.0:
Apply the CR2144570_700SP6 patch, as listed in BEA Systems Inc. Security Advisory: (BEA05-80.00) at http://dev2dev.bea.com/pub/advisory/130
For WebLogic Server and Express 8.1:
Apply the CR202495_810SP4 patch, as listed in BEA Systems Inc. Security Advisory: (BEA05-80.00) at http://dev2dev.bea.com/pub/advisory/130
* Note: WebLogic Server 7.0 Service Pack 7 and 8.1 Service Pack 5 will include the functionality in these patches. |
| Related URL |
CVE-2005-1380,CVE-2005-0432,CVE-2005-1742,CVE-2005-1743,CVE-2005-1744,CVE-2005-1745,CVE-2005-1744,CVE-2005-1746,CVE-2005-1747 (CVE) |
| Related URL |
12548,13400,13717,13793,13794 (SecurityFocus) |
| Related URL |
20276,20802,20703,20704,20706,20708,20793 (ISS) |
|
