|
Family: CGI abuses --> Category: infos
WebLogic < 8.1 SP3 Multiple Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Checks the version of WebLogic
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server is affected by multiple flaws.
Description :
According to its banner, the remote web server is BEA WebLogic version
8.1 SP2 or older. There are multiple vulnerabilities in such versions
that may allow unautorized access on the remote host or to get the
content of the remote JSP scripts.
See also :
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-65.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-66.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-67.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-68.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-69.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-70.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-71.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-72.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04-73.00.jsp
Solution :
Apply Service Pack 3 on WebLogic 8.1.
Threat Level:
Low / CVSS Base Score : 3
(AV:R/AC:L/Au:NR/C:C/A:N/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|