9 matches found
CVE-2008-4008
creationtimestamp| type| source ---|---|--- 2010-07-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16796 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/beaweblogictransferencoding.rb 2025-02-06...
BEA Weblogic - Transfer-Encoding Buffer Overflow (Metasploit)
$Id: beaweblogictransferencoding.rb 9744 2010-07-08 23:34:50Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Oracle BEA WebLogic Server Apache Connector Buffer Overflow (CVE-2008-4008)
Oracle BEA WebLogic Server is an enterprise-class multi-tier Java Application Server platform. WebLogic is typically used as the platform for large enterprise web applications. It supports various databases including Oracle, DB2, Microsoft SQL Server, MySQL and other JDBC-compliant databases. The...
BEA Weblogic Transfer-Encoding Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'BEA Weblogic...
Oracle WebLogic Apache连接器远程缓冲区溢出漏洞
CVECAN ID: CVE-2008-4008 WebLogic包含多种应用系统集成方案,包括Server/Express/Integration等。 WebLogic的Apache连接器实现上存在漏洞,模块做处理请求所带的畸形参数时,未进行长度检查就把字符串拷贝到固定长度的栈缓冲区中,远程攻击者可能利用此漏洞触发栈溢出,导致执行任意指令。 Oracle WebLogic Server Oracle ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Oracle WebLogic Server Apache Connector Transfer-Encoding buffer overflow
Added: 10/31/2008 CVE: CVE-2008-4008 BID: 31683 OSVDB: 49283 Background Oracle WebLogic Server formerly BEA WebLogic Server is a Java web application platform. Problem A buffer overflow vulnerability allows remote attackers to execute arbitrary commands by sending a specially crafted...
Oracle WebLogic Server Apache Connector Transfer-Encoding buffer overflow
Added: 10/31/2008 CVE: CVE-2008-4008 BID: 31683 OSVDB: 49283 Background Oracle WebLogic Server formerly BEA WebLogic Server is a Java web application platform. Problem A buffer overflow vulnerability allows remote attackers to execute arbitrary commands by sending a specially crafted...
Oracle WebLogic Server Apache Connector Transfer-Encoding buffer overflow
Added: 10/31/2008 CVE: CVE-2008-4008 BID: 31683 OSVDB: 49283 Background Oracle WebLogic Server formerly BEA WebLogic Server is a Java web application platform. Problem A buffer overflow vulnerability allows remote attackers to execute arbitrary commands by sending a specially crafted...
CVE-2008-4008
CVE-2008-4008 describes a stack-based buffer overflow in the BEA WebLogic Server Apache Connector (mod_wl) affecting WebLogic Server–Apache integration. Affected BEA/Oracle WebLogic versions include 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7. The overflow arises in the Apach...