2.6 CVE-2002-2177
Patch
BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to obtain sensitive information that was intended for other users.
https://nvd.nist.gov/vuln/detail/CVE-2002-2177
Categories
CWE-NVD-Other
References
BEA
BID Patch
| 5819 Patch Vendor Advisory |
XF Patch
| weblogic-http-response-information(10221) Patch Vendor Advisory |
CPE
| cpe | start | end |
|---|---|---|
| Configuration 1 | ||
| cpe:2.3:a:bea:weblogic_server:6.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:bea:weblogic_server:6.1:*:express:*:*:*:*:* | ||
| cpe:2.3:a:bea:weblogic_server:6.1:sp1:*:*:*:*:*:* | ||
| cpe:2.3:a:bea:weblogic_server:6.1:sp1:express:*:*:*:*:* | ||
| cpe:2.3:a:bea:weblogic_server:7.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:bea:weblogic_server:7.0:*:express:*:*:*:*:* | ||
| cpe:2.3:a:bea:weblogic_server:7.0.0.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:bea:weblogic_server:7.0.0.1:*:express:*:*:*:*:* | ||
Patch
| Url |
|---|
| 5819 |
| weblogic-http-response-information(10221) |
Exploits
Exploit-db.com
| id | description | date | |
|---|---|---|---|
| No known exploits | |||
Other (github, ...)
| Url |
|---|
| No known exploits |
CAPEC
| id | description | severity |
|---|---|---|
| No entry | ||
Sherlock® flash
Take a picture of your computer network in a few clicks !
The Sherlock® flash audit solution allows you to perform an audit to strengthen the security of your IT assets. Vulnerability analysis of your physical and virtual equipment. Patch planning by priority level and time available. Detailed and intuitive reporting.
