CVE-2007-2697
The CVE affects BEA WebLogic Express and WebLogic Server: embedded LDAP server in versions 7.0–SP6, 8.1–SP5, 9.0, and 9.1. The issue is that failed authentication attempts are not limited or audited, enabling remote attackers to perform brute-force attacks on the administrator password or flood t...