3 matches found
CVE-2005-4756
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, do not properly validate derived Principals with multiple PrincipalValidators, which might allow attackers to gain privileges...
CVE-2005-4756
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, are described as vulnerable due to improper validation of derived Principals when multiple PrincipalValidators are involved, potentially allowing privilege escalation. The Connected documents reiterate the affe...
CVE-2005-4756
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, do not properly validate derived Principals with multiple PrincipalValidators, which might allow attackers to gain privileges...