CVE-2007-0412

2007-01-23T00:28:00
ID CVE-2007-0412
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T19:04:00

Description

BEA WebLogic Server 6.1 through 6.1 SP7, 7.0 through 7.0 SP7, and 8.1 through 8.1 SP5 allows remote attackers to read arbitrary files inside the class-path property via .ear or exploded .ear files that use the manifest class-path property to point to utility jar files.