CVE-2005-4705
BEA WebLogic Server/Express insecure connection handling: when a Java client opens an SSL connection after an insecure one, the SSL session may be downgraded and the connection can be sniffed. Affected: WebLogic Server/Express 6.1 SP7, 7.0 SP6, 8.1 SP4 and earlier. Root cause described as returni...