Unspecified Vulnerability in BEA WebLogic Portal Affecting Web Services Remote Portlets
CVE-2006-0428

Currently unrated

Key Information:

Vendor: Oracle
Status: Weblogic Portal
Vendor: CVE Published:; 25 January 2006

What is CVE-2006-0428?

An unspecified vulnerability in BEA WebLogic Portal versions 8.1 SP3 through SP5, specifically affecting the use of Web Services Remote Portlets (WSRP), allows remote attackers to exploit crafted URLs to gain unauthorized access to restricted web resources. This vulnerability underscores the importance of securing web applications against unauthorized access and ensuring proper input validation to mitigate potential threats.

References

http://secunia.com/advisories/18593

third-party-advisoryx_refsource_SECUNIA

http://www.osvdb.org/22767

vdb-entryx_refsource_OSVDB

http://www.vupen.com/english/advisories/2006/0312

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Jan 25, 2006
Vulnerability Reserved
Jan 25, 2006

Oracle

What is CVE-2006-0428?

References

Timeline