|
CVE Reference: CVE-2007-2701
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2007-2701
|
|
Description:
The JMS Message Bridge in BEA WebLogic Server 7.0 through SP7 and 8.1 through Service Pack 6, when configured without a username and password, or when the connection URL is not defined, allows remote attackers to bypass the security access policy and "send unauthorized messages to a protected queue."
|
|
CVE Status:
Candidate
|
|
References:
XF
http://xforce.iss.net/xforce/xfdb/34287
ST
1018057
SAID
Secunia Advisory: SA25284
OSVDB
36067
BEA
http://dev2dev.bea.com/pub/advisory/234
|
|
|
Return to the previous page.
|
