CVE-2009-1002
Summary
| CVE | CVE-2009-1002 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2009-04-15 10:30:00 UTC |
| Updated | 2017-08-17 01:30:00 UTC |
| Description | Unspecified vulnerability in Oracle BEA WebLogic Server 10.3, 10.0 Gold through MP1, 9.2 Gold through MP3, 9.1, 9.0, 8.1 Gold through SP6, and 7.0 Gold through SP7 allows remote attackers to gain privileges via unknown vectors. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Oracle | Bea Product Suite | 10.0 | mp1 | All | All |
| Application | Oracle | Bea Product Suite | 10.3 | All | All | All |
| Application | Oracle | Bea Product Suite | 7.0 | sp7 | All | All |
| Application | Oracle | Bea Product Suite | 8.1 | sp6 | All | All |
| Application | Oracle | Bea Product Suite | 9.0 | All | All | All |
| Application | Oracle | Bea Product Suite | 9.1 | All | All | All |
| Application | Oracle | Bea Product Suite | 9.2 | mp3 | All | All |
| Application | Oracle | Bea Product Suite | 10.0 | mp1 | All | All |
| Application | Oracle | Bea Product Suite | 10.3 | All | All | All |
| Application | Oracle | Bea Product Suite | 7.0 | sp7 | All | All |
| Application | Oracle | Bea Product Suite | 8.1 | sp6 | All | All |
| Application | Oracle | Bea Product Suite | 9.0 | All | All | All |
| Application | Oracle | Bea Product Suite | 9.1 | All | All | All |
| Application | Oracle | Bea Product Suite | 9.2 | mp3 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Oracle Critical Patch Update Advisory - April 2009 | CONFIRM | www.oracle.com | |
| Oracle April 2009 Critical Patch Update Multiple Vulnerabilities | BID | www.securityfocus.com | |
| Page not found | Oracle | CONFIRM | www.oracle.com | |
| US-CERT Technical Cyber Security Alert TA09-105A -- Oracle Updates for Multiple Vulnerabilities | CERT | www.us-cert.gov | US Government Resource |
| Oracle WebLogic Server and Portal Bugs Let Remote Users Access and Modify Data and Cause Denial of Service Conditions - SecurityTracker | SECTRACK | www.securitytracker.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.