Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Metasploit
Metasploitadded 2012/05/17 8:28 a.m.31 views

Oracle Weblogic Apache Connector POST Request Buffer Overflow

This module exploits a stack based buffer overflow in the BEA Weblogic Apache plugin. The connector fails to properly handle specially crafted HTTP POST requests, resulting a buffer overflow due to the insecure usage of sprintf. Currently, this module works over Windows systems without DEP, and h...

10CVSS7.4AI score0.80777EPSS
Exploits9
seebug.org
seebug.orgadded 2009/12/18 12:0 a.m.9 views

WebLogic 10.3 mod_wl无效参数导致栈溢出

No description provided by source...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2008/11/16 12:0 a.m.90 views

Oracle WebLogic Server mod_wl Invalid Parameter Remote Overflow (1150354)

The remote web server is using the WebLogic plug-in for Apache modwl, an Apache module included with Oracle formerly BEA WebLogic Server and used to proxy requests from an Apache HTTP server to WebLogic. The version of this plug-in on the remote host is affected by a stack buffer overflow that is...

10CVSS6.3AI score0.85806EPSS
Exploits9References4
Tenable Nessus
Tenable Nessusadded 2008/08/18 12:0 a.m.55 views

Oracle WebLogic Server mod_wl POST Request Remote Overflow

The Apache web server running on the remote host includes a version of the WebLogic plug-in for Apache modwl that is affected by a buffer overflow. This is an Apache module included with Oracle formerly BEA WebLogic Server and used to proxy requests from an Apache HTTP server to WebLogic. A remot...

10CVSS5.8AI score0.80777EPSS
Exploits9References1
CVE
CVEadded 2008/07/22 4:0 p.m.119 views

CVE-2008-3257

CVE-2008-3257 describes a stack-based buffer overflow in the Oracle WebLogic Server Apache Connector (mod_wl) that affects WebLogic Server 10.3 and earlier. The overflow occurs when handling a long HTTP version string in a POST request, allowing remote attackers to potentially execute arbitrary c...

10CVSS7.4AI score0.80777EPSS
Exploits9References12Affected Software4
ATTACKERKB
ATTACKERKBadded 2008/07/22 12:0 a.m.30 views

Oracle mod_wl HTTP POST Request Remote Buffer Overflow Vulnerability

Stack-based buffer overflow in the Apache Connector modwl in Oracle WebLogic Server formerly BEA WebLogic Server 10.3 and earlier allows remote attackers to execute arbitrary code via a long HTTP version string, as demonstrated by a string after “POST /.jsp” in an HTTP request. Recent assessments...

10CVSS7.4AI score0.80777EPSS
Exploits9References12
seebug.org
seebug.orgadded 2008/07/18 12:0 a.m.12 views

Oracle mod_wl HTTP POST请求远程缓冲区溢出漏洞

BUGTRAQ ID: 30273 CNCAN ID:CNCAN-2008071803 Oracle modwl是一款Bea Weblogic的前端模块。 Oracle modwl之前称为BEA modwl不正确检查用户提交的输入数据,远程攻击者可以利用漏洞进行缓冲区溢出攻击,可导致拒绝服务或任意代码执行攻击。 提交包含超长数据的POST请求,可触发此漏洞。精心构建提交数据可导致以应用程序权限执行任意指令。 Oracle modwl 目前没有解决方案提供: http://edocs.bea.com/wls/docs70/plugins/apache.html...

6.9AI score
Exploits0
Rows per page
Query Builder