1. CVE-Search
  2. CVE-2005-1744
ID CVE-2005-1744
Summary BEA WebLogic Server and WebLogic Express 7.0 through Service Pack 5 does not log out users when an application is redeployed, which allows those users to continue to access the application without having to log in again, which may be in violation of newly changed security constraints or role mappings.
References
Vulnerable Configurations
  • cpe:2.3:a:bea:weblogic_server:-:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:-:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:3.1.8:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:3.1.8:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.5:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.5.1:sp15:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.5.1:sp15:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.5.2:sp1:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.5.2:sp1:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:4.5.2:sp2:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:4.5.2:sp2:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp1:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp1:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp1:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp1:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp1:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp1:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp10:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp10:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp10:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp10:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp10:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp10:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp11:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp11:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp11:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp11:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp11:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp11:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp12:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp12:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp12:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp12:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp12:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp12:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp13:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp13:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp13:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp13:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp13:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp13:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp2:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp2:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp2:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp2:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp2:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp2:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp3:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp3:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp3:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp3:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp3:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp3:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp4:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp4:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp4:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp4:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp4:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp4:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp5:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp5:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp5:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp5:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp5:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp5:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp6:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp6:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp6:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp6:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp6:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp6:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp7:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp7:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp7:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp7:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp7:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp7:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp8:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp8:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp8:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp8:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp8:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp8:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp9:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp9:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp9:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp9:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:5.1:sp9:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:5.1:sp9:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp1:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp1:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp1:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp1:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp1:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp1:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp2:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp2:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp2:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp2:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp2:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp2:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp3:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp3:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp3:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp3:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp3:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp3:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp4:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp4:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp4:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp4:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp4:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp4:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp5:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp5:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp5:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp5:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp5:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp5:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp6:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp6:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp6:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp6:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp6:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp6:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp7:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp7:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp7:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp7:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp7:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp7:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp8:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp8:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp8:express:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp8:express:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:6.1:sp8:win32:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:6.1:sp8:win32:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:-:*:*:express:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:-:*:*:express:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:express:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:express:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:express:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:express:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:express:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:express:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:express:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:express:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:express:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:express:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp6:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp6:*:*:*:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp6:*:*:express:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp6:*:*:express:*:*:*
  • cpe:2.3:a:bea:weblogic_server:7.0:sp7:*:*:*:*:*:*
    cpe:2.3:a:bea:weblogic_server:7.0:sp7:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 08-02-2024 - 20:35)
Impact:
Exploitability:
CWE CWE-459
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bea BEA05-77.00
bid 13717
sectrack 1014049
secunia 15486
vupen ADV-2005-0604
Last major update 08-02-2024 - 20:35
Published 24-05-2005 - 04:00
Last modified 08-02-2024 - 20:35
Back to Top