1. CVE-Search
  2. CVE-2006-0430
ID CVE-2006-0430
Summary Certain configurations of BEA WebLogic Server and WebLogic Express 9.0, 8.1 through SP5, and 7.0 through SP6, when connection filters are enabled, cause the server to run more slowly, which makes it easier for remote attackers to cause a denial of service (server slowdown).
References
Vulnerable Configurations
  • cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp1:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp1:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp2:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp2:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp3:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp3:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp4:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp4:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp5:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp5:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp6:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp6:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp6:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp6:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp1:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp1:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp1:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp1:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp2:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp2:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp2:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp2:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp3:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp3:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp3:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp3:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp4:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp4:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:8.1:sp4:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:8.1:sp4:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp1:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp1:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp1:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp2:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp2:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp2:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp2:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp3:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp3:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp3:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp3:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp4:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp4:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp4:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp4:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp5:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp5:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:9.0:sp5:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:9.0:sp5:express:*:*:*:*:*
CVSS
Base: 5.0 (as of 20-07-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
bea BEA06-117.00
bid 16358
sectrack 1015528
secunia 18592
vupen ADV-2006-0313
xf weblogic-connection-filter-dos(24301)
Last major update 20-07-2017 - 01:29
Published 25-01-2006 - 23:07
Last modified 20-07-2017 - 01:29
Back to Top