CVE-2007-0418
CVE-2007-0418 affects BEA WebLogic Server 7.0–7.0 SP6, 8.1–8.1 SP5, 9.0, and 9.1. The root cause is that the security policy does not declare permissions for EJB methods with array parameters, enabling remote attackers to obtain unauthorized access to these methods. Affects multiple versions; exp...