CVE-2004-0711

2004-07-27T00:00:00
ID CVE-2004-0711
Type cve
Reporter NVD
Modified 2017-07-10T21:30:24

Description

The URL pattern matching feature in BEA WebLogic Server 6.x matches illegal patterns ending in "" as wildcards as if they were the legal "/" pattern, which could cause WebLogic 7.x to allow remote attackers to bypass intended access restrictions because the illegal patterns are properly rejected.