Lucene search

[email protected]CVE-2007-2704

HistoryMay 16, 2007 - 1:19 a.m.

CVE-2007-2704

2007-05-1601:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2704

bea weblogic server

ssl

dos

vulnerability

7.5 High

AI Score

Confidence

High

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

0.023 Low

EPSS

Percentile

89.7%

JSON

BEA WebLogic Server 9.0 through 9.2 allows remote attackers to cause a denial of service (SSL port unavailability) by accessing a half-closed SSL socket.

CPENameOperatorVersion
bea:weblogic_serverbea weblogic servereq9.0
bea:weblogic_serverbea weblogic servereq9.2
bea:weblogic_serverbea weblogic servereq9.1

CPE	Name	Operator	Version
bea:weblogic_server	bea weblogic server	eq	9.0
bea:weblogic_server	bea weblogic server	eq	9.2
bea:weblogic_server	bea weblogic server	eq	9.1

References

dev2dev.bea.com/pub/advisory/237

osvdb.org/36064

secunia.com/advisories/25284

securitytracker.com/id?1018057

www.vupen.com/english/advisories/2007/1815

exchange.xforce.ibmcloud.com/vulnerabilities/34278

7.5 High

AI Score

Confidence

High

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

0.023 Low

EPSS

Percentile

89.7%

JSON

Related for CVE-2007-2704

prion1 cvelist1