Vulnerabilities > CVE-2004-1755

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

NVD

Published: 2004-12-31

Updated: 2024-11-20

Summary

The Web Services fat client for BEA WebLogic Server and Express 7.0 SP4 and earlier, when using 2-way SSL and multiple certificates to connect to the same URL, may use the incorrect identity after the first connection, which could allow users to gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Bea BEA Weblogic Server 7.0	15

References

http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_47.00.jsp
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_47.00.jsp
http://secunia.com/advisories/10725
http://secunia.com/advisories/10725
http://www.kb.cert.org/vuls/id/858990
http://www.kb.cert.org/vuls/id/858990
http://www.securityfocus.com/bid/9502
http://www.securityfocus.com/bid/9502
https://exchange.xforce.ibmcloud.com/vulnerabilities/15826
https://exchange.xforce.ibmcloud.com/vulnerabilities/15826

Vulnerabilities > CVE-2004-1755 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2004-1755"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2004-1755