The embedded LDAP server in BEA WebLogic Server and Express 8.1 through Service Pack 4, and 7.0 through Service Pack 5, allows remote anonymous binds, which may allow remote malicious users to view user entries or cause a denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bea weblogic server 6.0 |
||
bea weblogic server 6.1 |
||
bea weblogic server 7.0.0.1 |
||
bea weblogic server 7.0 |
||
bea weblogic server 8.1 |
||
oracle weblogic portal 8.0 |