5
CVE-2004-2424
- EPSS 1.75%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:09:37
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
BEA WebLogic Server and WebLogic Express 8.1 through 8.1 SP2 allow remote attackers to cause a denial of service (network port consumption) via unknown actions in HTTPS sessions, which prevents the server from releasing the network port when the session ends.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Bea ≫ Weblogic Server Version8.1
Bea ≫ Weblogic Server Version8.1 Editionexpress
Bea ≫ Weblogic Server Version8.1 Editionwin32
Bea ≫ Weblogic Server Version8.1 Updatesp1
Bea ≫ Weblogic Server Version8.1 Updatesp1 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp1 Editionwin32
Bea ≫ Weblogic Server Version8.1 Updatesp2
Bea ≫ Weblogic Server Version8.1 Updatesp2 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp2 Editionwin32
Bea ≫ Weblogic Server Version8.1 Updatesp3
Bea ≫ Weblogic Server Version8.1 Updatesp3 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp3 Editionwin32
Bea ≫ Weblogic Server Version8.1 Updatesp4
Bea ≫ Weblogic Server Version8.1 Updatesp4 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp4 Editionwin32
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.75% | 0.75 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
http://dev2dev.bea.com/pub/advisory/7
http://secunia.com/advisories/11864
http://securitytracker.com/id?1010492
http://www.osvdb.org/7076
http://www.securityfocus.com/bid/10544
https://exchange.xforce.ibmcloud.com/vulnerabilities/16419