Vulnerabilities > CVE-2002-2177 - Information Disclosure vulnerability in BEA Weblogic Server 6.1/7.0/7.0.0.1
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to obtain sensitive information that was intended for other users.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 8 |