Vulnerabilities > CVE-2006-0428 - Multiple vulnerability in Oracle Weblogic Portal 8.1

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

oracle

NVD

Published: 2006-01-25

Updated: 2018-10-30

Summary

Unspecified vulnerability in BEA WebLogic Portal 8.1 SP3 through SP5, when using Web Services Remote Portlets (WSRP), allows remote attackers to access restricted web resources via crafted URLs.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Weblogic Portal 8.1	3

References

http://dev2dev.bea.com/pub/advisory/172
http://secunia.com/advisories/18593
http://securitytracker.com/id?1015528
http://www.osvdb.org/22767
http://www.securityfocus.com/bid/16358
http://www.vupen.com/english/advisories/2006/0312
https://exchange.xforce.ibmcloud.com/vulnerabilities/24293