PT-2006-3409 · Bea · Bea Weblogic Server

Publicado

2006-05-19

Atualizado

2017-07-20

CVE-2006-2461

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions BEA WebLogic Server versions prior to 8.1 Service Pack 4

Description The issue prevents some transmissions from being encrypted via SSL in certain circumstances, allowing remote attackers to more easily read potentially sensitive network traffic. This occurs due to improper setting of the Quality of Service.

Recommendations For versions prior to 8.1 Service Pack 4, update to 8.1 Service Pack 4 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-2461

Produtos afetados

Bea Weblogic Server

PT-2006-3409 · Bea · Bea Weblogic Server

CVE-2006-2461

Identificadores relacionados

Produtos afetados

Referências · 7