Vulnerability in Bea Weblogic_server
CVE-2005-1743
BEA WebLogic Server and WebLogic Express 8.1 through Service Pack 3 and 7.0 through Service Pack 5 does not properly handle when a security provider throws an exception, which may cause WebLogic to use incorrect identity for the thread, or…
EPSS: 0.022 (80.2th percentile) — read the EPSS interpretation.
Affected products
- Bea Weblogic_server — versions 6.0, 6.1, 7.0
- Oracle Weblogic_portal — versions 8.0
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (vendor-advisory, x_refsource_BEA, Vendor Advisory)