CVE-2009-1975 - Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3 allows remote a

CVE-2009-1975

Summary

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3 allows remote attackers to affect confidentiality, integrity, and availability, related to the WLS Console Package.

References

http://secunia.com/advisories/35776
http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html
http://www.securityfocus.com/bid/35673
http://www.securitytracker.com/id?1022561
http://www.vupen.com/english/advisories/2009/1900
https://exchange.xforce.ibmcloud.com/vulnerabilities/51759

Vulnerable Configurations

cpe:2.3:a:oracle:bea_product_suite:10.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:bea_product_suite:10.3:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 17-08-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

refmap via4

bid	35673
confirm	http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html
sectrack	1022561
secunia	35776
vupen	ADV-2009-1900
xf	oracle-bea-wls-console-unspecified(51759)

Last major update

17-08-2017 - 01:30

Published

14-07-2009 - 23:30

Last modified

17-08-2017 - 01:30