首页 -> 安全研究
安全研究
安全漏洞
BEA WebLogic Server和WebLogic Express多个安全漏洞
发布日期:2005-10-11
更新日期:2005-10-11
受影响系统:
BEA Systems WebLogic Express 8.1 SP5描述:
BEA Systems WebLogic Express 8.1 SP4
BEA Systems WebLogic Express 8.1 SP3
BEA Systems WebLogic Express 8.1 SP2
BEA Systems WebLogic Express 8.1 SP1
BEA Systems WebLogic Express 8.1
BEA Systems WebLogic Express 7.0 SP7
BEA Systems WebLogic Express 7.0 SP6
BEA Systems WebLogic Express 7.0 SP5
BEA Systems WebLogic Express 7.0 SP4
BEA Systems WebLogic Express 7.0 SP3
BEA Systems WebLogic Express 7.0 SP2
BEA Systems WebLogic Express 7.0 SP1
BEA Systems WebLogic Express 7.0
BEA Systems WebLogic Express 6.1 SP8
BEA Systems WebLogic Express 6.1 SP7
BEA Systems WebLogic Express 6.1 SP6
BEA Systems WebLogic Express 6.1 SP5
BEA Systems WebLogic Express 6.1 SP4
BEA Systems WebLogic Express 6.1 SP3
BEA Systems WebLogic Express 6.1 SP2
BEA Systems WebLogic Express 6.1 SP1
BEA Systems WebLogic Express 6.1
BEA Systems Weblogic Server 8.1 SP5
BEA Systems Weblogic Server 8.1 SP4
BEA Systems Weblogic Server 8.1 SP3
BEA Systems Weblogic Server 8.1 SP2
BEA Systems Weblogic Server 8.1 SP1
BEA Systems Weblogic Server 8.1
BEA Systems Weblogic Server 7.0 SP7
BEA Systems Weblogic Server 7.0 SP6
BEA Systems Weblogic Server 7.0 SP5
BEA Systems Weblogic Server 7.0 SP4
BEA Systems Weblogic Server 7.0 SP3
BEA Systems Weblogic Server 7.0 SP2
BEA Systems Weblogic Server 7.0 SP1
BEA Systems Weblogic Server 7.0
BEA Systems Weblogic Server 6.1 SP8
BEA Systems Weblogic Server 6.1 SP7
BEA Systems Weblogic Server 6.1 SP6
BEA Systems Weblogic Server 6.1 SP5
BEA Systems Weblogic Server 6.1 SP4
BEA Systems Weblogic Server 6.1 SP3
BEA Systems Weblogic Server 6.1 SP2
BEA Systems Weblogic Server 6.1 SP1
BEA Systems Weblogic Server 6.0
BUGTRAQ ID: 15052
CVE(CAN) ID: CVE-2005-4749
BEA Systems WebLogic包含多种应用系统集成方案,包括Server/Express/Integration等。
BEA发布了24个安全公告,描述了各种影响BEA WebLogic Server和WebLogic Express的漏洞,包括口令泄漏、跨站脚本、拒绝服务等。本地或远程攻击者可以利用这些漏洞破坏计算机的保密性、完整性等,最终导致完全入侵有漏洞的机器。
<*来源:BEA Systems (secalert@bea.com)
链接:http://dev2dev.bea.com/advisoriesnotifications/index.html
*>
建议:
厂商补丁:
BEA Systems
-----------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
WebLogic Server:
http://commerce.bea.com/showallversions.jsp?family=WLS
WebLogic Platform:
http://commerce.bea.com/showallversions.jsp?family=WLP
浏览次数:3703
严重程度:0(网友投票)
绿盟科技给您安全的保障