PT-2007-7242 · Bea · Bea Weblogic Mobility Server

Publicado

2007-12-15

Atualizado

2017-08-08

CVE-2007-6384

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions BEA WebLogic Mobility Server versions 3.3, 3.5, and 3.6 through 3.6 SP1

Description The issue affects the Image Converter functionality, allowing remote attackers to obtain access to application files and resources. The exact vectors used for the attack are not specified.

Recommendations For BEA WebLogic Mobility Server versions 3.3, 3.5, and 3.6 through 3.6 SP1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

CVE-2007-6384

Produtos afetados

Bea Weblogic Mobility Server

PT-2007-7242 · Bea · Bea Weblogic Mobility Server

CVE-2007-6384

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7