PT-2002-2036 · Bea · Bea Weblogic Express+1

Published

2002-10-04

Updated

2008-09-05

CVE-2002-1030

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: BEA WebLogic Server and Express versions 5.1.x through 7.0.x

Description: A race condition in the Performance Pack of BEA WebLogic Server and Express allows remote attackers to cause a denial of service, resulting in a crash, by flooding the system with data and connections.

Recommendations: For versions 5.1.x through 7.0.x, consider restricting access to the Performance Pack to minimize the risk of exploitation until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1030

Affected Products

Bea Weblogic Express

Bea Weblogic Server

PT-2002-2036 · Bea · Bea Weblogic Express+1

CVE-2002-1030

Related Identifiers

Affected Products

References · 7