HTTP: Vulnerable BEA Weblogic version ( < 8.1)
This signature detects BEA Weblogic server 8.1 SP2 and earlier versions. These versions have multiple vulnerabilities that enable unauthorized access to a remote host.
Extended Description
BEA Systems has released advisories to address multiple vulnerabilities in WebLogic Server and Express. These issues may permit unauthorized access, information disclosure, or pose threats to role and policy security.
Affected Products
Bea_systems weblogic_server_for_win32
References
BugTraq: 11168
CVE: CVE-2004-2320
URL: http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-65.00.jsp
Short Name
HTTP:STC:VULN:WEBLOGIC-8-1
Severity
Info
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
( 8.1) < BEA CVE-2004-2320 Vulnerable Weblogic bid:11168 version
Release Date
01/15/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Rarely
Vendors
Bea_systems
CVSS Score
5.8