5 matches found
EUVD-2004-0709
Malware in sbrugna...
CVE-2004-0711
The URL pattern matching feature in BEA WebLogic Server 6.x matches illegal patterns ending in "" as wildcards as if they were the legal "/" pattern, which could cause WebLogic 7.x to allow remote attackers to bypass intended access restrictions because the illegal patterns are properly rejected...
CVE-2004-0711
The CVE describes a flaw in BEA WebLogic Server 6.x URL pattern matching where illegal patterns ending in “” are treated as the legal “/ ” wildcard. This could allow WebLogic 7.x to bypass access restrictions because these illegal patterns are (purportedly) rejected but effectively treated as all...
CVE-2004-0711
The URL pattern matching feature in BEA WebLogic Server 6.x matches illegal patterns ending in "" as wildcards as if they were the legal "/" pattern, which could cause WebLogic 7.x to allow remote attackers to bypass intended access restrictions because the illegal patterns are properly rejected...
BEA WebLogic Server contains a vulnerability in the URL pattern matching
Overview There is a vulnerability in the URL pattern matching functionality of BEA WebLogic Server that could allow URL restrictions to be bypassed. Description BEA Systems describes WebLogic Server as "an industrial-strength application infrastructure for developing, integrating, securing, and...