Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4009

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2008-4009
Last Modified 22 Oct 2012 10:53:14
Published 14 Oct 2008 05:11:11
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2008-4009

Summary

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Vulnerable Systems

Application

  • Oracle Bea Product Suite 9.1


References

CONFIRM - https://support.bea.com/application_content/product_portlets/securityadvisories/2802.html

XF - oracle-weblogic-authorizer-unauth-access(45908)

VUPEN - ADV-2008-2825

SECTRACK - 1021056

CONFIRM - http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2008.html

SECUNIA - 32304

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html


Last Updated: 27 May 2016 10:49:42