CVE-2007-0410Weblogic Server vulnerability

4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
1.9%
top 16.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
BEA Weblogic Server
Timeline
PublishedJan 23
Latest updateMay 1

Description

Unspecified vulnerability in the thread management in BEA WebLogic 7.0 through 7.0 SP6, 8.1 through 8.1 SP5, 9.0, and 9.1, when T3 authentication is used, allows remote attackers to cause a denial of service (thread and system hang) via unspecified "sequences of events."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDbea/weblogic_server4 versions+3

Patches

Patch: dev2dev.bea.comPatch: dev2dev.bea.com

🔴Vulnerability Details

2
GHSA
GHSA-7v3h-wv9f-qg5w: Unspecified vulnerability in the thread management in BEA WebLogic 72022-05-01
CVEList
CVE-2007-0410: Unspecified vulnerability in the thread management in BEA WebLogic 72007-01-23

💬Community

1
Bugzilla
CVE-2007-0245 openoffice.org rtf filter buffer overflow2007-06-01
CVE-2007-0410 — BEA Weblogic Server vulnerability | cvebase