ID CVE-2008-2581
Summary Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 has unknown impact and remote attack vectors related to UDDI Explorer.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:bea_product_suite:10.0:mp1
    cpe:2.3:a:oracle:bea_product_suite:10.0:mp1
  • cpe:2.3:a:oracle:bea_product_suite:7.0:sp7
    cpe:2.3:a:oracle:bea_product_suite:7.0:sp7
  • cpe:2.3:a:oracle:bea_product_suite:8.1:sp6
    cpe:2.3:a:oracle:bea_product_suite:8.1:sp6
  • cpe:2.3:a:oracle:bea_product_suite:9.0
    cpe:2.3:a:oracle:bea_product_suite:9.0
  • cpe:2.3:a:oracle:bea_product_suite:9.1
    cpe:2.3:a:oracle:bea_product_suite:9.1
  • cpe:2.3:a:oracle:bea_product_suite:9.2:mp3
    cpe:2.3:a:oracle:bea_product_suite:9.2:mp3
  • cpe:2.3:a:oracle:weblogic_server_component:10.0:mp1
    cpe:2.3:a:oracle:weblogic_server_component:10.0:mp1
  • cpe:2.3:a:oracle:weblogic_server_component:7.0:sp7
    cpe:2.3:a:oracle:weblogic_server_component:7.0:sp7
  • cpe:2.3:a:oracle:weblogic_server_component:8.1:sp6
    cpe:2.3:a:oracle:weblogic_server_component:8.1:sp6
  • cpe:2.3:a:oracle:weblogic_server_component:9.0
    cpe:2.3:a:oracle:weblogic_server_component:9.0
  • cpe:2.3:a:oracle:weblogic_server_component:9.1
    cpe:2.3:a:oracle:weblogic_server_component:9.1
  • cpe:2.3:a:oracle:weblogic_server_component:9.2:mp3
    cpe:2.3:a:oracle:weblogic_server_component:9.2:mp3
CVSS
Base: 5.1 (as of 16-07-2008 - 10:31)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
NASL family Web Servers
NASL id WEBLOGIC_CR368155.NASL
description According to its self-reported banner, the version of Oracle WebLogic Server running on the remote host is affected by an unspecified vulnerability in the UDDI Explorer component that could be exploited remotely.
last seen 2019-02-21
modified 2018-11-15
plugin id 17740
published 2011-11-30
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=17740
title Oracle WebLogic UDDI Explorer Unspecified Vulnerability (CVE-2008-2581)
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html
hp
  • HPSBMA02133
  • SSRT061201
sectrack 1020498
secunia
  • 31087
  • 31113
vupen
  • ADV-2008-2109
  • ADV-2008-2115
xf oracle-weblogic-uddiexplorer-unauth-access(43824)
Last major update 22-10-2012 - 22:48
Published 15-07-2008 - 19:41
Last modified 07-08-2017 - 21:31
Back to Top