Vulnerabilities > CVE-2007-2703 - Remote Security vulnerability in Oracle Weblogic Portal 9.2

CVSS 3.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

high complexity

oracle

NVD

Published: 2007-05-16

Updated: 2018-10-30

Summary

BEA WebLogic Portal 9.2 GA can corrupt a visitor entitlements role if an administrator provides a long role description, which might allow remote authenticated users to access privileged resources.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Weblogic Portal 9.2	1

References

http://dev2dev.bea.com/pub/advisory/236
http://osvdb.org/36065
http://secunia.com/advisories/25284
http://www.securitytracker.com/id?1018060
http://www.vupen.com/english/advisories/2007/1815
https://exchange.xforce.ibmcloud.com/vulnerabilities/34285