CVE-2007-0408
BEA WebLogic Server 8.1–8.1 SP4 does not properly validate client certificates when reusing cached connections, enabling remote access via an untrusted X.509 certificate. Affected product: BEA WebLogic Server (v8.1 to 8.1 SP4). Root cause: insufficient validation on reused cached TLS/SSL client c...