2905 matches found
CVE-2000-1238
BEA Systems WebLogic Express and WebLogic Server 5.1 SP1-SP6 allows remote attackers to bypass access controls for restricted JSP or servlet pages via a URL with multiple / forward slash characters before the restricted pages...
def-2000-04: Bea WebLogic Server dotdot-overflow
====================================================================== Defcom Labs Advisory def-2000-04 Bea WebLogic Server dotdot-overflow Author: Peter Grьndl [email protected] Release Date: 2000-12-19 ======================================================================...
BEA Systems WebLogic Server 4.0 x4.5 x5.1 x - Double Dot Buffer Overflow
BEA Systems WebLogic Server 4.0 x4.5 x5.1 x - Double Dot Buffer Overflow source: https://www.securityfocus.com/bid/2138/info BEA Systems WebLogic Server is an enterprise level web and wireless application server. Unchecked buffers exist in a particular handler for URL requests that begin with two...
BEA Systems WebLogic Server 4.0 x/4.5 x/5.1 x - Double Dot Buffer Overflow
source: https://www.securityfocus.com/bid/2138/info BEA Systems WebLogic Server is an enterprise level web and wireless application server. Unchecked buffers exist in a particular handler for URL requests that begin with two dots "..". Depending on the data entered into the buffer, WebLogic Serve...
CVE-2000-0681
Buffer overflow in BEA WebLogic server proxy plugin allows remote attackers to execute arbitrary commands via a long URL with a .JSP extension...