Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0863

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-0863
Last Modified 07 Mar 2011 10:05:34
Published 20 Feb 2008 08:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0863

Summary

BEA WebLogic Server and WebLogic Express 9.0 and 9.1 exposes the web service's WSDL and security policies, which allows remote attackers to obtain sensitive information and potentially launch further attacks.

Vulnerable Systems

Application

  • Bea Weblogic Server 9.0

  • Bea Weblogic Server 9.1


References

BEA - BEA08-187.00

VUPEN - ADV-2008-0612

SECTRACK - 1019455


Last Updated: 27 May 2016 10:46:57