CVE-2007-0423

Currently unrated

Key Information:

Vendor: Oracle
Status: Weblogic Portal
Vendor: CVE Published:; 23 January 2007

Summary

BEA WebLogic Portal 9.2 does not properly handle when an administrator deletes entitlements for a role, which causes other role entitlements to be "inadvertently affected," which has an unknown impact.

References

http://osvdb.org/32857

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/23750

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/22082

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jan 23, 2007
Vulnerability Reserved
Jan 22, 2007