Buffer Overflow Vulnerability in WebLogic Server Plugins for Apache by BEA Systems
CVE-2008-4008

Currently unrated

Key Information:

Vendor

Oracle
Status
Bea Product Suite
Vendor
CVE Published:
14 October 2008

What is CVE-2008-4008?

The vulnerability in the WebLogic Server Plugins for Apache within the BEA Product Suite is characterized by a potential buffer overflow that could allow remote attackers to compromise the confidentiality, integrity, and availability of the service. Although specific vectors have not been disclosed, the issue has been associated with an invalid parameter in the WebLogic Apache Connector. This could lead to unauthorized access or denial of service, necessitating immediate attention from security professionals managing vulnerable versions.

References

http://www.oracle.com/technetwork/topics/security/cpuoct2...
x_refsource_CONFIRM
http://labs.idefense.com/intelligence/vulnerabilities/dis...
third-party-advisoryx_refsource_IDEFENSE
http://www.securitytracker.com/id?1021056
vdb-entryx_refsource_SECTRACK

EPSS Score

86% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2008-4008 : Buffer Overflow Vulnerability in WebLogic Server Plugins for Apache by BEA Systems