RSS   Podatności dla 'Aqualogic service bus'   RSS

2007-01-22
 
CVE-2007-0433

 
 
Unspecified vulnerability in BEA AquaLogic Enterprise Security 2.0 through 2.0 SP2, 2.1 through 2.1 SP1, and 2.2, when using Active Directory LDAP for authentication, allows remote authenticated users to access the server even after the account has been disabled.

 
 
CVE-2007-0432

 
 
BEA AquaLogic Service Bus 2.0, 2.1, and 2.5 does not properly reject malformed request messages to a proxy service, which might allow remote attackers to bypass authorization policies and route requests to back-end services or conduct other unauthorized activities.

 

 >>> Vendor: BEA 11 Produkty
Weblogic server
Tuxedo
Weblogic integration
Liquid data
Weblogic portal
Jrockit
Aqualogic service bus
Aqualogic enterprise security
Weblogic workshop
Aqualogic interaction
Weblogic mobility server

Copyright 2024, cxsecurity.com

 

Back to Top