Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4614

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4614
Last Modified 13 Nov 2008 01:46:26
Published 30 Aug 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4614

Summary

BEA WebLogic Server 9.1 does not properly handle propagation of an admin server's security policy change log to temporarily unavailable managed servers, which might allow attackers to bypass intended restrictions, a different vulnerability than CVE-2007-0426.

Vulnerable Systems

Application

  • Bea Weblogic Server 9.1


References

BID - 22082

BEA - BEA07-149.00

OSVDB - 45839


Last Updated: 27 May 2016 10:45:54