CVE-2008-2579 - Unspecified vulnerability in the WebLogic Server Plugins for Apache, Sun and IIS web servers compone

CVE-2008-2579

Summary

Unspecified vulnerability in the WebLogic Server Plugins for Apache, Sun and IIS web servers component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 has unknown impact and remote attack vectors.

References

Vulnerable Configurations

cpe:2.3:a:oracle:weblogic_server:6.1:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp4:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp4:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp4:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp4:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp4:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp4:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp5:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp5:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp5:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp5:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp5:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp5:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp6:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp6:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp6:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp6:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp6:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp6:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp7:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp7:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp7:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp7:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp7:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:6.1:sp7:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp4:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp4:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp4:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp4:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp4:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp4:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp5:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp5:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp5:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp5:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp5:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp5:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp6:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp6:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp6:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp6:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp6:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp6:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp7:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp7:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp7:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp7:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp7:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:7.0:sp7:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp4:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp4:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp4:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp4:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp4:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp4:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp5:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp5:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp5:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp5:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp5:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp5:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp6:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp6:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp6:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp6:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp6:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:8.1:sp6:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:maintenance_pack3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:maintenance_pack3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:maintenance_pack3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:maintenance_pack3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:maintenance_pack3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.0:maintenance_pack3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:maintenance_pack3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:maintenance_pack3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:maintenance_pack3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:maintenance_pack3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:maintenance_pack3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.1:maintenance_pack3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack2:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack2:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack2:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack3:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack3:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:9.2:maintenance_pack3:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:-:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:-:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:-:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:maintenance_pack1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:maintenance_pack1:*:*:*:apache:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:maintenance_pack1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:maintenance_pack1:*:*:*:internet_information_services:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:maintenance_pack1:*:*:*:sun:*:*
cpe:2.3:a:oracle:weblogic_server:10.0:maintenance_pack1:*:*:*:sun:*:*

CVSS

Base:	7.5 (as of 14-10-2020 - 13:18)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

confirm	http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html
hp	HPSBMA02133 SSRT061201
jvn	JVN#81667751
jvndb	JVNDB-2008-000040
sectrack	1020498
secunia	31087 31113
vupen	ADV-2008-2109 ADV-2008-2115
xf	oracle-weblogic-plugins-unauth-access(43823)

Last major update

14-10-2020 - 13:18

Published

15-07-2008 - 23:41

Last modified

14-10-2020 - 13:18