Remote Code Execution Vulnerability in BEA Product Suite WebLogic Server
CVE-2008-5459

Currently unrated

Key Information:

Vendor: Oracle
Status: Bea Product Suite
Vendor: CVE Published:; 14 January 2009

Summary

An unspecified vulnerability within the WebLogic Server component of BEA Product Suite 10.3 enables remote attackers to potentially compromise the confidentiality of sensitive information. The exact vectors allowing this vulnerability are unknown, posing significant risks for systems utilizing this version of WebLogic Server. Security measures and timely updates are essential to mitigate risks associated with such vulnerabilities.

References

http://secunia.com/advisories/33526

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2009/0115

vdb-entryx_refsource_VUPEN

http://www.securitytracker.com/id?1021571

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 14, 2009
Vulnerability Reserved
Dec 11, 2008