 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.55402 |
| Category: | CGI abuses |
| Title: | WebLogic Server No Logout |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host, according to its banner, is running a WebLogic Server that doesn't force a user to logout after an application is redeployed. The risk is that a new application may have new security constraints, but old users might still be able to gain access under the old rules. WebLogic Server 7.0 up to and including SP5 is vulnerable. Solution : Apply SP6. http://dev2dev.bea.com/pub/advisory/127 Risk factor : High CVSS Score: 7.5 |
| Cross-Ref: |
BugTraq ID: 13717 Common Vulnerability Exposure (CVE) ID: CVE-2005-1744 http://dev2dev.bea.com/pub/advisory/127 http://www.securityfocus.com/bid/13717 http://securitytracker.com/id?1014049 http://secunia.com/advisories/15486 http://www.vupen.com/english/advisories/2005/0604 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |