CVE-2003-1094

Name of the Vulnerable Software and Affected Versions BEA WebLogic Server and Express version 7.0 SP3

Description The issue arises from certain code execution paths that result in an incorrect current user, such as the frequent use of JNDI initial contexts. This could allow remote authenticated users to gain privileges.

Recommendations For BEA WebLogic Server and Express version 7.0 SP3, consider restricting access to JNDI initial contexts to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.