CVE-2007-0425
Summary
| CVE | CVE-2007-0425 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2007-01-23 00:28:00 UTC |
| Updated | 2011-03-08 02:49:00 UTC |
| Description | Unspecified vulnerability in BEA WebLogic Platform and Server 8.1 through 8.1 SP5, and JRockit 1.4.2 R4.5 and earlier, allows attackers to gain privileges via unspecified vectors, related to an "overflow condition," probably a buffer overflow. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Bea | Jrockit | All | r24.5 | All | All |
| Application | Bea | Weblogic Server | 8.1 | All | All | All |
| Application | Bea | Weblogic Server | 8.1 | All | All | All |
| Application | Bea | Weblogic Server | All | sp5 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| An overflow condition may occur in products using BEA JRockit | BEA | dev2dev.bea.com | Vendor Advisory |
| 38515 | OSVDB | osvdb.org | |
| BEA WebLogic Multiple Vulnerabilities and Security Issues - Advisories - Secunia | SECUNIA | secunia.com | Vendor Advisory |
| Webmail - OVH | VUPEN | www.vupen.com | |
| SecurityTracker.com Archives - WebLogic Bugs Let Remote Users Gain Access, Obtain Information, and Deny Service | SECTRACK | securitytracker.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.