|
|
CVE Reference: CVE-2007-2701 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-2701 |
|
|
Description: The JMS Message Bridge in BEA WebLogic Server 7.0 through SP7 and 8.1 through Service Pack 6, when configured without a username and password, or when the connection URL is not defined, allows remote attackers to bypass the security access policy and "send unauthorized messages to a protected queue." |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/34287 ST 1018057 SAID Secunia Advisory: SA25284 OSVDB 36067 BEA http://dev2dev.bea.com/pub/advisory/234 |
|
| Return to the previous page. |
