BEA WebLogic Server and WebLogic Express User Impersonation Vulnerability

BEA WebLogic Server and WebLogic Express User Impersonation Vulnerability

Solution:
BEA has issued a fix for WebLogic Server and Express 7.0 Service Pack 3. This fix will be included in Service Pack 4.

BEA Systems Weblogic Server 7.0 SP 3

BEA Systems CR110892_700sp3
ftp://ftpna.beasys.com/pub/releases/security/CR110892_700sp3.jar

BEA Systems WebLogic Express 7.0 SP 3

BEA Systems CR110892_700sp3
ftp://ftpna.beasys.com/pub/releases/security/CR110892_700sp3.jar

BEA Systems WebLogic Server for Win32 7.0 SP 3

BEA Systems CR110892_700sp3
ftp://ftpna.beasys.com/pub/releases/security/CR110892_700sp3.jar

BEA Systems WebLogic Express for Win32 7.0 SP 3

BEA Systems CR110892_700sp3
ftp://ftpna.beasys.com/pub/releases/security/CR110892_700sp3.jar