Weblogic Server CVE-2007-2694 Cross-Site Scripting Vulnerability

Bugtraq ID: 81796
Class: Input Validation Error
CVE: CVE-2007-2694
Remote: Yes
Local: No
Published: May 15 2007 12:00AM
Updated: May 15 2007 12:00AM
Credit: Unknown
Vulnerable: BEA Systems Weblogic Server 8.1 SP 5
BEA Systems Weblogic Server 8.1 SP 4
BEA Systems Weblogic Server 8.1 SP 3
BEA Systems Weblogic Server 8.1 SP 2
BEA Systems Weblogic Server 8.1 SP 1
BEA Systems Weblogic Server 7.0
- HP HP-UX 11.0
- HP HP-UX 11i v1
 - IBM AIX 4.3.3
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server SP2
 - Microsoft Windows 2000 Datacenter Server SP1
 - Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows 2000 Server
- Microsoft Windows NT Enterprise Server 4.0 SP6a
 - Microsoft Windows NT Enterprise Server 4.0 SP6
 - Microsoft Windows NT Enterprise Server 4.0 SP5
 - Microsoft Windows NT Enterprise Server 4.0 SP4
 - Microsoft Windows NT Server 4.0 SP6a
 - Microsoft Windows NT Server 4.0 SP6
 - Microsoft Windows NT Server 4.0 SP5
 - Microsoft Windows NT Server 4.0 SP4
 - Microsoft Windows NT Workstation 4.0 SP6a
 - Microsoft Windows NT Workstation 4.0 SP6
 - Microsoft Windows NT Workstation 4.0 SP5
 - Microsoft Windows NT Workstation 4.0 SP4
 - Redhat Linux 7.1 i386
 - Redhat Linux 6.2 i386
 - Sun Solaris 8_sparc
 - Sun Solaris 2.7_sparc
 - Sun Solaris 2.6_sparc
 BEA Systems Weblogic Server 6.1 SP 7
BEA Systems Weblogic Server 6.1 SP 5
BEA Systems Weblogic Server 6.1 SP 4
BEA Systems Weblogic Server 6.1 SP 3
- HP HP-UX 11.0
- HP HP-UX 11i v1
 - IBM AIX 4.3.3
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server SP2
 - Microsoft Windows 2000 Datacenter Server SP1
 - Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows 2000 Server
- Microsoft Windows NT Enterprise Server 4.0 SP6a
 - Microsoft Windows NT Enterprise Server 4.0 SP6
 - Microsoft Windows NT Enterprise Server 4.0 SP5
 - Microsoft Windows NT Enterprise Server 4.0 SP4
 - Microsoft Windows NT Server 4.0 SP6a
 - Microsoft Windows NT Server 4.0 SP6
 - Microsoft Windows NT Server 4.0 SP5
 - Microsoft Windows NT Server 4.0 SP4
 - Redhat Linux 7.1 i386
 - Redhat Linux 6.2 i386
 - Sun Solaris 8_sparc
 - Sun Solaris 2.7_sparc
 - Sun Solaris 2.6_sparc
 BEA Systems Weblogic Server 6.1 SP 2
- HP HP-UX 11.0
- HP HP-UX 11i v1
 - IBM AIX 4.3.3
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows 2000 Server
- Microsoft Windows NT 4.0 SP6a
 - Microsoft Windows NT 4.0 SP6
 - Microsoft Windows NT 4.0 SP5
 - Microsoft Windows NT 4.0 SP4
 - Redhat Linux 7.1 i386
 - Redhat Linux 6.2 i386
 - Sun Solaris 8_sparc
 - Sun Solaris 2.7_sparc
 - Sun Solaris 2.6_sparc
 BEA Systems Weblogic Server 6.1 SP 1
- HP HP-UX 11.0
- HP HP-UX 11i v1
 - IBM AIX 4.3.3
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows 2000 Server
- Microsoft Windows NT 4.0 SP6a
 - Microsoft Windows NT 4.0 SP6
 - Microsoft Windows NT 4.0 SP5
 - Microsoft Windows NT 4.0 SP4
 - Redhat Linux 7.1 i386
 - Redhat Linux 6.2 i386
 - Sun Solaris 8_sparc
 - Sun Solaris 2.7_sparc
 - Sun Solaris 2.6_sparc
 BEA Systems Weblogic Server 6.1
- HP HP-UX 11.0
- HP HP-UX 11i v1
 - IBM AIX 4.3.3
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows 2000 Server
- Microsoft Windows NT 4.0 SP6a
 - Microsoft Windows NT 4.0 SP6
 - Microsoft Windows NT 4.0 SP5
 - Microsoft Windows NT 4.0 SP4
 - Redhat Linux 7.1 i386
 - Redhat Linux 6.2 i386
 - Sun Solaris 8_sparc
 - Sun Solaris 2.7_sparc
 - Sun Solaris 2.6_sparc
 BEA Systems Weblogic Server 8.1
BEA Systems Weblogic Server 7.0 SP7
Bea Weblogic Server 9.0 Ga Express
Bea Weblogic Server 9.0 GA
Bea Weblogic Server 8.1 Express
Bea Weblogic Server 7.0 Sp7 Express
Bea Weblogic Server 7.0 Sp6 Express
Bea Weblogic Server 7.0 Sp6
Bea Weblogic Server 7.0 Sp5 Express
Bea Weblogic Server 7.0 Sp5
Bea Weblogic Server 7.0 Sp4 Express
Bea Weblogic Server 7.0 SP4
Bea Weblogic Server 7.0 Sp3 Express
Bea Weblogic Server 7.0 SP3
Bea Weblogic Server 7.0 Sp2 Express
Bea Weblogic Server 7.0 SP2
Bea Weblogic Server 7.0 Sp1 Express
Bea Weblogic Server 7.0 SP1
Bea Weblogic Server 7.0 Express
Bea Weblogic Server 6.1 Express
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus