2.1

CVE-2006-0432

Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to be created, which prevents the server from properly protecting JNDI resources.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
BeaWeblogic Server Version9.0
BeaWeblogic Server Version9.0 Editionexpress
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.36% 0.275
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://securitytracker.com/id?1015528
Patch
http://www.securityfocus.com/bid/16358
http://www.vupen.com/english/advisories/2006/0313
http://secunia.com/advisories/18592
Patch
Vendor Advisory
http://dev2dev.bea.com/pub/advisory/176
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/24299