 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.55694 |
| Category: | CGI abuses |
| Title: | WebLogic Server Priviledge Escalation |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host, according to its banner, is running a WebLogic Server that is vulnerable to priviledge escalation attacks. Under certain circumstances, the incorrect current user may be used, which could allow remote authenticated users to gain priviledges. An example provided is the frequent use of NDI initial contexts. Solution : Apply the latest service pack. For 7.0, apply SP4 http://dev2dev.bea.com/pub/advisory/58 Risk factor : High CVSS Score: 7.2 |
| Cross-Ref: |
BugTraq ID: 8320 Common Vulnerability Exposure (CVE) ID: CVE-2003-1094 http://www.securityfocus.com/bid/8320 CERT/CC vulnerability note: VU#999788 http://www.kb.cert.org/vuls/id/999788 XForce ISS Database: weblogic-gain-privileges(12799) https://exchange.xforce.ibmcloud.com/vulnerabilities/12799 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |