The Administration Console for BEA Tuxedo 8.1 and previous versions allows remote malicious users to determine the existence of files outside the web root via modified paths in the INIFILE argument.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bea tuxedo 6.3 |
||
bea tuxedo 6.4 |
||
bea weblogic server 5.1 |
||
bea weblogic server 4.2 |
||
bea weblogic server 5.0.1 |
||
bea tuxedo 6.5 |
||
bea tuxedo 7.1 |
||
bea tuxedo 8.0 |
||
bea tuxedo 8.1 |