Vulnerabilities > CVE-2005-4766 - Multiple vulnerability in BEA Weblogic Server 7.0/8.1
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
NONE Availability impact
NONE Summary
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, do not encrypt multicast traffic, which might allow remote attackers to read sensitive cluster synchronization messages by sniffing the multicast traffic.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 33 |