CVE-2007-2697 in WebLogic Serverinfo

Zusammenfassung (Englisch)

The embedded LDAP server in BEA WebLogic Express and WebLogic Server 7.0 through SP6, 8.1 through SP5, 9.0, and 9.1, when in certain configurations, does not limit or audit failed authentication attempts, which allows remote attackers to more easily conduct brute-force attacks against the administrator password, or flood the server with login attempts and cause a denial of service.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

15.05.2007

Veröffentlichung

15.05.2007

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
36818	BEA WebLogic Server Denial of Service	404	Proof-of-Concept	Nicht definiert	CVE-2007-2697

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

◂ ZurückÜbersichtWeiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!