Back to search
CVE-2007-0432
Published: Jan 23, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
BEA AquaLogic Service Bus 2.0, 2.1, and 2.5 does not properly reject malformed request messages to a proxy service, which might allow remote attackers to bypass authorization policies and route requests to back-end services or conduct other unauthorized activities.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
22082
vdb-entry
x_refsource_BID
23786
third-party-advisory
x_refsource_SECUNIA
32862
vdb-entry
x_refsource_OSVDB
1017523
vdb-entry
x_refsource_SECTRACK
BEA07-157.00
vendor-advisory
x_refsource_BEA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now