|
CVE Reference: CVE-2007-0426
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2007-0426
|
|
Description:
BEA WebLogic Portal 9.2, when running in a WebLogic Server clustered environment using WebLogic Portal entitlements, does not properly propagate entitlement policy changes if the changes are made on a managed server while the Administrative Server is unavailable, which might allow attackers to bypass intended restrictions.
|
|
CVE Status:
Candidate
|
|
References:
ST
1017521
SAID
Secunia Advisory: SA23750
OSVDB
32854
38516
BID
22082
BEA
http://dev2dev.bea.com/pub/advisory/223
|
|
|
Return to the previous page.
|
