2 matches found
CVE-2004-0713
The CVE-2004-0713 case affects BEA WebLogic Server and WebLogic Express, versions 8.1–SP2, 7.0–SP4, and 6.1–SP6. The vulnerability is in the remove method of a stateful Enterprise JavaBean (EJB), where EJB permissions are not properly checked before unexporting a bean. This allows remote authenti...
CVE-2004-0713
The remove method in a stateful Enterprise JavaBean EJB in BEA WebLogic Server and WebLogic Express version 8.1 through SP2, 7.0 through SP4, and 6.1 through SP6, does not properly check EJB permissions before unexporting a bean, which allows remote authenticated users to remove EJB objects from...