|
BEA WebLogic Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA12524
|
|
|
Release Date:
|
2004-09-14
|
|
Popularity:
|
10,345 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Security Bypass
Manipulation of data
Exposure of system information
Exposure of sensitive information
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | BEA WebLogic Express 6.x
BEA WebLogic Express 7.x
BEA WebLogic Express 8.x
BEA WebLogic Server 6.x
BEA WebLogic Server 7.x
BEA WebLogic Server 8.x
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Multiple vulnerabilities have been reported in WebLogic, where the most critical can be exploited by malicious people to access sensitive information.
1) Internal server objects bounded into the JNDI tree are insufficiently protected. This can be exploited using a malicious object to access sensitive information or cause a DoS (Denial of Service) by unbinding the server object.
Successful exploitation requires access to the JNDI tree.
The vulnerability reportedly affects:
* WebLogic Server / Express 8.1, released through Service Pack 2, on all platforms
* WebLogic Server / Express 7.0, released through Service Pack 5, on all platforms
* WebLogic Server / Express 6.1, released through Service Pack 6, on all platforms
2) Insufficient authorization on some weblogic.Admin commands can be exploited to execute these commands without supplying a username and password.
Successful exploitation can cause a DoS or potentially be used to access configuration information.
The vulnerability reportedly affects:
* WebLogic Server / Express 8.1, released through Service Pack 2, on all platforms
* WebLogic Server / Express 7.0, released through Service Pack 5, on all platforms
3) A problem exists concerning installations where the OS provides case-sensitive filenames and cross-mounts directories containing web applications from an OS that does not support case-sensitive filenames. This can potentially cause incorrectly evaluated URL patterns in web.xml to not properly protect resources.
The vulnerability reportedly affects:
* For WebLogic Server / Express 8.1, released through Service Pack 2, on non-Windows platforms
* For WebLogic Server / Express 7.0, released through Service Pack 5, on non-Windows platforms
* For WebLogic Server / Express 6.1, released through Service Pack 6, on non-Windows platforms
4) A problem caused due to storing clear text passwords embedded in some command-line utilities and administrative tasks. This can e.g. be exploited by any malicious, local user who can read the utility source to get access to the password.
The vulnerability reportedly affects:
* WebLogic Server / Express 8.1, released through Service Pack 2, on all platforms.
* WebLogic Server / Express 7.0, released through Service Pack 4, on all platforms.
* WebLogic Server / Express 6.1, released through Service Pack 6, on all platforms.
5) A problem caused due to the password in certain situations being echoed back to the the administrator when booting the server on the Linux operating system via the WebLogic Administrative Console. This may potentially disclose the administrator's password to other people.
The vulnerability reportedly affects:
* WebLogic Server / Express 8.1, released through Service Pack 2, on Linux
* WebLogic Server / Express 7.0, released through Service Pack 5, on Linux
* WebLogic Server / Express 6.1, released through Service Pack 6, on Linux
6) A problem caused due to the server version being sent in a HTTP header can be exploited by sending a HTTP request to retrieve the version number of the current running server. Malicious people can use this information to check if a system is vulnerable to a specific issue.
The vulnerability reportedly affects:
* WebLogic Server / Express 8.1, released through Service Pack 2, on all platforms
* WebLogic Server / Express 7.0, released through Service Pack 5, on all platforms
* WebLogic Server / Express 6.1, released through Service Pack 6, on all platforms
7) The vulnerability is caused due to an internal error, which can cause an application to be left with incomplete security roles and policies. This will however only happen if the internal error occurs in one of the security providers during deployment. This can be exploited to compromise application security.
The vulnerability reportedly affects:
* WebLogic Server / Express 8.1, released through Service Pack 2, on all platforms
* WebLogic Server / Express 7.0, released through Service Pack 5, on all platforms
8) Insufficient restrictions on disabled users can be exploited to logon even though the user account has been disabled (but not deleted).
The vulnerability reportedly affects:
* WebLogic Server / Express 8.1, released through Service Pack 2, on all platforms when Active Directory LDAP server is used for authentication
* WebLogic Server / Express 7.0, released through Service Pack 5, on all platforms when Active Directory LDAP server is used for authentication
9) Certain sensitive data and configuration information may be sent in clear-text and can e.g. be exploited to access and potentially replace configuration information.
Successful exploitation requires that a person can sniff network traffic and that the administrator port is not enabled.
The issue reportedly affects the following versions:
* WebLogic Server / Express 8.1 on all platforms
* WebLogic Server / Express 7.0 on all platforms.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
13th Nov, 2009
|
New advisories:
|
21 |
|
New vulnerabilities:
|
154 |
|
Updated advisories:
|
29 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 Solutions | More...
|
|
