|
|
CVE Reference: CVE-2007-0412 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-0412 |
|
|
Description: BEA WebLogic Server 6.1 through 6.1 SP7, 7.0 through 7.0 SP7, and 8.1 through 8.1 SP5 allows remote attackers to read arbitrary files inside the class-path property via .ear or exploded .ear files that use the manifest class-path property to point to utility jar files. |
|
|
CVE Status: Candidate |
|
|
References: ST 1017525 SAID Secunia Advisory: SA23750 OSVDB 38505 BID 22082 BEA http://dev2dev.bea.com/pub/advisory/206 |
|
| Return to the previous page. |
