Vulnerabilities > CVE-2006-0421 - Multiple vulnerability in BEA WebLogic
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
By design, BEA WebLogic Server and WebLogic Express 7.0 and 6.1, when creating multiple domains from the same WebLogic instance on the same machine, allows administrators of any created domain to access other created domains, which could allow administrators to gain privileges that were not intended.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |