RSS   Vulnerabilities for
'Apache connector in weblogic server'
   RSS

2008-07-22
 
CVE-2008-3257

CWE-119
 

 
Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and earlier allows remote attackers to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /.jsp" in an HTTP request.

 

 >>> Vendor: Bea systems 8 Products
Weblogic portal
Aqualogic interaction
Plumtree foundation
Weblogic
Weblogic express
Weblogic server
Plumtree collaboration
Apache connector in weblogic server


Copyright 2017, cxsecurity.com

 

Back to Top