Back to search
CVE-2005-4756
Published: Apr 1, 2006
Modified: Sep 16, 2024
PUBLISHED
Description
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, do not properly validate derived Principals with multiple PrincipalValidators, which might allow attackers to gain privileges.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
BEA05-92.00
vendor-advisory
x_refsource_BEA
15052
vdb-entry
x_refsource_BID
17138
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now