Vulnerabilities > CVE-2007-0415 - Products Multiple vulnerability in BEA
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
BEA WebLogic Server 8.1 through 8.1 SP5 does not properly enforce access control after a dynamic update and dynamic redeployment of an application that is implemented through exploded jars, which allows attackers to bypass intended access restrictions.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 12 |