Back to search
CVE-2003-1221
Published: Aug 16, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
BEA WebLogic Express and Server 7.0 through 8.1 SP 1, under certain circumstances when a request to use T3 over SSL (t3s) is made to the insecure T3 port, may use a non-SSL connection for the communication, which could allow attackers to sniff sessions.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
9034
vdb-entry
x_refsource_BID
BEA03-40.00
vendor-advisory
x_refsource_BEA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now