PT-2007-5778 · Bea · Bea Weblogic Server

Published

2007-08-31

Updated

2018-10-26

CVE-2007-4618

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions BEA WebLogic Server versions 6.1 Gold through SP7 BEA WebLogic Server versions 7.0 Gold through SP7

Description The issue allows remote attackers to cause a denial of service, specifically disk consumption, by sending certain malformed HTTP headers.

Recommendations For BEA WebLogic Server versions 6.1 Gold through SP7, update to a version that includes the fix for this issue. For BEA WebLogic Server versions 7.0 Gold through SP7, update to a version that includes the fix for this issue.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2007-4618

Affected Products

Bea Weblogic Server

PT-2007-5778 · Bea · Bea Weblogic Server

CVE-2007-4618

Weakness Enumeration

Related Identifiers

Affected Products

References · 8