Secunia
Login
|
|
CVE Reference: CVE-2009-1016 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-1016 |
|
|
Description: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to IIS. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on claims from a reliable researcher that this is a stack-based buffer overflow involving an unspecified Server Plug-in and a crafted SSL certificate. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/64934 ST 1022059 MISC http://secunia.com/secunia_research/2009-23/ CONFIRM http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2009.html CERT http://www.us-cert.gov/cas/techalerts/TA09-105A.html BID 34461 |
|
| Return to the previous page. |
