Vulnerabilities > CVE-2002-0106 - Denial of Service vulnerability in BEA Weblogic Server 6.1

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

bea

exploit available

NVD

Published: 2002-03-25

Updated: 2016-10-18

Summary

BEA Systems Weblogic Server 6.1 allows remote attackers to cause a denial of service via a series of requests to .JSP files that contain an MS-DOS device name.

Vulnerable Configurations

Part	Description	Count
Application	Bea BEA Weblogic Server 6.1	2

Exploit-Db

description	BEA Systems WebLogic Server and Express 7.0 Null Character DOS. CVE-2002-0106. Dos exploit for windows platform
id	EDB-ID:21432
last seen	2016-02-02
modified	2002-04-30
published	2002-04-30
reporter	Peter GrÃ¼ndl
source	https://www.exploit-db.com/download/21432/
title	BEA Systems WebLogic Server and Express 7.0 - Null Character DoS

References

http://marc.info/?l=bugtraq&m=101050440629269&w=2
http://www.iss.net/security_center/static/7808.php
http://www.securityfocus.com/bid/3816