Vulnerabilities > CVE-2007-2696 - Remote Security vulnerability in BEA Weblogic Server 6.1/7.0/8.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
bea
Summary
The JMS Server in BEA WebLogic Server 6.1 through SP7, 7.0 through SP6, and 8.1 through SP5 enforces security access policies on the front end, which allows remote attackers to access protected queues via direct requests to the JMS back-end server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 21 |