BEA WebLogic Server and Express SSL Client Privilege Escalation Vulnerability
BID:9502
Info
BEA WebLogic Server and Express SSL Client Privilege Escalation Vulnerability
| Bugtraq ID: | 9502 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 27 2004 12:00AM |
| Updated: | Jan 27 2004 12:00AM |
| Credit: | Announced by BEA Systems. |
| Vulnerable: |
BEA Systems WebLogic Server for Win32 7.0 SP 4 BEA Systems WebLogic Server for Win32 7.0 SP 3 BEA Systems WebLogic Server for Win32 7.0 SP 2 BEA Systems WebLogic Server for Win32 7.0 SP 1 BEA Systems WebLogic Server for Win32 7.0 BEA Systems Weblogic Server 7.0 SP 4 BEA Systems Weblogic Server 7.0 SP 3 BEA Systems Weblogic Server 7.0 SP 2 BEA Systems Weblogic Server 7.0 SP 1 BEA Systems Weblogic Server 7.0 BEA Systems WebLogic Express for Win32 7.0 SP 4 BEA Systems WebLogic Express for Win32 7.0 SP 3 BEA Systems WebLogic Express for Win32 7.0 SP 2 BEA Systems WebLogic Express for Win32 7.0 SP 1 BEA Systems WebLogic Express for Win32 7.0 BEA Systems WebLogic Express 7.0 SP 4 BEA Systems WebLogic Express 7.0 SP 3 BEA Systems WebLogic Express 7.0 SP 2 BEA Systems WebLogic Express 7.0 SP 1 BEA Systems WebLogic Express 7.0 |
| Not Vulnerable: | |
Discussion
BEA WebLogic Server and Express SSL Client Privilege Escalation Vulnerability
BEA WebLogic Server and Express are prone to an error that may allow an SSL client to elevate their privileges. It may be possible for a user to connect to another user's identity, allowing them to execute commands as the other user.
BEA WebLogic Server and Express are prone to an error that may allow an SSL client to elevate their privileges. It may be possible for a user to connect to another user's identity, allowing them to execute commands as the other user.
Exploit / POC
BEA WebLogic Server and Express SSL Client Privilege Escalation Vulnerability
There is no exploit code required.
There is no exploit code required.
Solution / Fix
BEA WebLogic Server and Express SSL Client Privilege Escalation Vulnerability
Solution:
BEA Systems has released a fix for this issue:
BEA Systems WebLogic Server for Win32 7.0 SP 4
BEA Systems Weblogic Server 7.0 SP 4
BEA Systems WebLogic Express for Win32 7.0 SP 4
BEA Systems WebLogic Express 7.0 SP 4
Solution:
BEA Systems has released a fix for this issue:
BEA Systems WebLogic Server for Win32 7.0 SP 4
-
BEA Systems CR126896_700sp4.jar
ftp://ftpna.beasys.com/pub/releases/security/CR126896_700sp4.jar
BEA Systems Weblogic Server 7.0 SP 4
-
BEA Systems CR126896_700sp4.jar
ftp://ftpna.beasys.com/pub/releases/security/CR126896_700sp4.jar
BEA Systems WebLogic Express for Win32 7.0 SP 4
-
BEA Systems CR126896_700sp4.jar
ftp://ftpna.beasys.com/pub/releases/security/CR126896_700sp4.jar
BEA Systems WebLogic Express 7.0 SP 4
-
BEA Systems CR126896_700sp4.jar
ftp://ftpna.beasys.com/pub/releases/security/CR126896_700sp4.jar
References
BEA WebLogic Server and Express SSL Client Privilege Escalation Vulnerability
References:
References:
- SECURITY ADVISORY (BEA04-47.00) (BEA Systems)