Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1974

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2009-1974
Last Modified 22 Oct 2012 11:07:26
Published 14 Jul 2009 07:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-1974

Summary

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Servlet Container Package.

Vulnerable Systems

Application

  • Oracle Bea Product Suite 10.0

  • Oracle Bea Product Suite 10.3

  • Oracle Bea Product Suite 7.0

  • Oracle Bea Product Suite 8.1

  • Oracle Bea Product Suite 9.0

  • Oracle Bea Product Suite 9.1

  • Oracle Bea Product Suite 9.2


References

CONFIRM - http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujul2009.html

XF - oracle-bea-wls-container-unspecified(51758)

VUPEN - ADV-2009-1900

SECTRACK - 1022561

BID - 35674

SECUNIA - 35776

OSVDB - 55906

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html


Last Updated: 27 May 2016 10:51:43