CVE-2007-0411

2007-01-23T00:28:00
ID CVE-2007-0411
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:49:00

Description

BEA WebLogic Server 8.1 through 8.1 SP5, 9.0, 9.1, and 9.2 Gold, when WS-Security is used, does not properly validate certificates, which allows remote attackers to conduct a man-in-the-middle (MITM) attack.