CVE-2004-2424

2005-08-1804:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%

JSON

BEA WebLogic Server and WebLogic Express 8.1 through 8.1 SP2 allow remote attackers to cause a denial of service (network port consumption) via unknown actions in HTTPS sessions, which prevents the server from releasing the network port when the session ends.

References

dev2dev.bea.com/pub/advisory/7

secunia.com/advisories/11864

securitytracker.com/id?1010492

www.osvdb.org/7076

www.securityfocus.com/bid/10544

exchange.xforce.ibmcloud.com/vulnerabilities/16419