Bea Systems WebLogic Xerces XML Parser Denial Of Service Vulnerability

BEA Systems WebLogic Server is an enterprise level web and wireless application server for Microsoft Windows and most Unix and Linux distributions.

This issue could allow an attacker with the ability to place files on the vulnerable host to deny service to legitimate users. Normal service would resume only when the process is killed, and manually restarted. Additionally, this vulnerability could continue to be exploited until the malicious XML file is removed.


 

Privacy Statement
Copyright 2010, SecurityFocus