CVE-2009-1002

Name of the Vulnerable Software and Affected Versions Oracle BEA WebLogic Server versions 7.0 Gold through SP7 Oracle BEA WebLogic Server versions 8.1 Gold through SP6 Oracle BEA WebLogic Server versions 9.0 Oracle BEA WebLogic Server versions 9.1 Oracle BEA WebLogic Server versions 9.2 Gold through MP3 Oracle BEA WebLogic Server versions 10.0 Gold through MP1 Oracle BEA WebLogic Server version 10.3

Description The issue allows remote attackers to gain privileges via unknown vectors.

Recommendations For Oracle BEA WebLogic Server version 7.0 Gold through SP7, update to a version that is not affected by this issue. For Oracle BEA WebLogic Server version 8.1 Gold through SP6, update to a version that is not affected by this issue. For Oracle BEA WebLogic Server version 9.0, update to a version that is not affected by this issue. For Oracle BEA WebLogic Server version 9.1, update to a version that is not affected by this issue. For Oracle BEA WebLogic Server version 9.2 Gold through MP3, update to a version that is not affected by this issue. For Oracle BEA WebLogic Server version 10.0 Gold through MP1, update to a version that is not affected by this issue. For Oracle BEA WebLogic Server version 10.3, update to a version that is not affected by this issue.