ID CVE-2008-5457
Summary Unspecified vulnerability in the Oracle BEA WebLogic Server Plugins for Apache, Sun and IIS web servers component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:bea_product_suite:10.3
    cpe:2.3:a:oracle:bea_product_suite:10.3
  • cpe:2.3:a:oracle:bea_product_suite:10.0:mp1
    cpe:2.3:a:oracle:bea_product_suite:10.0:mp1
  • cpe:2.3:a:oracle:bea_product_suite:9.2:mp3
    cpe:2.3:a:oracle:bea_product_suite:9.2:mp3
  • cpe:2.3:a:oracle:bea_product_suite:9.1
    cpe:2.3:a:oracle:bea_product_suite:9.1
  • cpe:2.3:a:oracle:bea_product_suite:9.0
    cpe:2.3:a:oracle:bea_product_suite:9.0
  • cpe:2.3:a:oracle:bea_product_suite:8.1:sp6
    cpe:2.3:a:oracle:bea_product_suite:8.1:sp6
  • cpe:2.3:a:oracle:bea_product_suite:7.0:sp7
    cpe:2.3:a:oracle:bea_product_suite:7.0:sp7
CVSS
Base: 10.0 (as of 14-01-2009 - 11:08)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
  • description BEA WebLogic JSESSIONID Cookie Value Overflow. CVE-2008-5457. Remote exploit for windows platform
    id EDB-ID:16762
    last seen 2016-02-02
    modified 2010-07-03
    published 2010-07-03
    reporter metasploit
    source https://www.exploit-db.com/download/16762/
    title BEA WebLogic JSESSIONID Cookie Value Overflow
  • description Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit. CVE-2008-5457. Remote exploit for windows platform
    id EDB-ID:8336
    last seen 2016-02-01
    modified 2009-04-01
    published 2009-04-01
    reporter Guido Landi
    source https://www.exploit-db.com/download/8336/
    title Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit
metasploit via4
description This module exploits a buffer overflow in BEA's WebLogic plugin. The vulnerable code is only accessible when clustering is configured. A request containing a long JSESSION cookie value can lead to arbitrary code execution.
id MSF:EXPLOIT/WINDOWS/HTTP/BEA_WEBLOGIC_JSESSIONID
last seen 2018-08-01
modified 2017-09-14
published 2009-03-27
reliability Good
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/bea_weblogic_jsessionid.rb
title BEA WebLogic JSESSIONID Cookie Value Overflow
nessus via4
NASL family Web Servers
NASL id WEBLOGIC_PLUG_IN_1166189.NASL
description The remote web server is using the WebLogic plug-in for Apache, IIS, or Sun web servers, a module included with Oracle (formerly BEA) WebLogic Server and used to proxy requests from an HTTP server to WebLogic. The version of this plug-in on the remote host is affected by an as-yet unspecified buffer overflow that is triggered when processing a specially crafted request. An unauthenticated, remote attacker can leverage this issue to execute arbitrary code on the remote host. Note that Nessus has not tried to exploit this issue but rather has only checked the affected plug-in's change number / build timestamp.
last seen 2019-01-16
modified 2018-11-15
plugin id 35374
published 2009-01-15
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=35374
title Oracle WebLogic Server Plug-in Remote Overflow (1166189)
packetstorm via4
refmap via4
bid 33177
confirm http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html
sectrack 1021571
secunia 33526
vupen ADV-2009-0115
saint via4
  • bid 33177
    description Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow
    title weblogic_iis_connector_jsessionid
    type remote
  • bid 33177
    description Oracle Database OLAP component ODCITABLESTART buffer overflow
    id database_oracle_version
    osvdb 51347
    title oracle_olap_odcitablestart
    type remote
  • bid 33177
    description Oracle Secure Backup login.php ora_osb_lcookie command execution
    id database_oracle_backupver
    osvdb 51343
    title oracle_secure_backup_login_lcookie
    type remote
  • bid 33177
    description Oracle Secure Backup login.php rbtool command injection
    id database_oracle_backupver
    osvdb 51342
    title oracle_secure_backup_login_rbtool
    type remote
  • bid 33177
    description Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow
    id database_oracle_backupndmpbo,database_oracle_backupver
    osvdb 51340
    title oracle_secure_backup_ndmp_clientauth
    type remote
Last major update 22-10-2012 - 22:56
Published 13-01-2009 - 21:30
Back to Top