Vulnerabilities > BEA Systems > Critical

DATE CVE VULNERABILITY TITLE RISK
2008-07-22 CVE-2008-3257 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and earlier allows remote attackers to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /.jsp" in an HTTP request.
network
low complexity
bea bea-systems oracle CWE-119
critical
10.0