Vulnerabilities > CVE-2007-0432 - Products Multiple vulnerability in BEA Aqualogic Service BUS 2.0/2.1/2.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
BEA AquaLogic Service Bus 2.0, 2.1, and 2.5 does not properly reject malformed request messages to a proxy service, which might allow remote attackers to bypass authorization policies and route requests to back-end services or conduct other unauthorized activities.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |