NVD Vulnerability Detail

CVE-2003-1221

Summary	BEA WebLogic Express and Server 7.0 through 8.1 SP 1, under certain circumstances when a request to use T3 over SSL (t3s) is made to the insecure T3 port, may use a non-SSL connection for the communication, which could allow attackers to sniff sessions.
Publication Date	Dec. 31, 2003, 2 p.m.
Registration Date	Jan. 29, 2021, 6:02 p.m.
Last Update	Sept. 11, 2008, 4:22 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:bea:weblogic_server:7.0:::::::*
cpe:2.3:a:bea:weblogic_server:7.0::express:::::
cpe:2.3:a:bea:weblogic_server:7.0::win32:::::
cpe:2.3:a:bea:weblogic_server:7.0:sp1::::::
cpe:2.3:a:bea:weblogic_server:7.0:sp1:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp1:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp2::::::
cpe:2.3:a:bea:weblogic_server:7.0:sp2:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp2:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp3::::::
cpe:2.3:a:bea:weblogic_server:7.0:sp3:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp3:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp4:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:::::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1::express:::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1::win32:::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1::::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2::::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2:win32:::::*
cpe:2.3:a:bea:weblogic_server:8.1:::::::*
cpe:2.3:a:bea:weblogic_server:8.1::express:::::
cpe:2.3:a:bea:weblogic_server:8.1:sp1::::::
cpe:2.3:a:bea:weblogic_server:8.1:sp1:express:::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://dev2dev.bea.com/pub/advisory/32	BEA
2	http://www.securityfocus.com/bid/9034	BID	Patch

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:bea:weblogic_server:7.0:::::::*
cpe:2.3:a:bea:weblogic_server:7.0::express:::::
cpe:2.3:a:bea:weblogic_server:7.0::win32:::::
cpe:2.3:a:bea:weblogic_server:7.0:sp1::::::
cpe:2.3:a:bea:weblogic_server:7.0:sp1:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp1:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp2::::::
cpe:2.3:a:bea:weblogic_server:7.0:sp2:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp2:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp3::::::
cpe:2.3:a:bea:weblogic_server:7.0:sp3:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp3:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0:sp4:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:::::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1::express:::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1::win32:::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1::::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1:win32:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2::::::
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2:express:::::*
cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2:win32:::::*
cpe:2.3:a:bea:weblogic_server:8.1:::::::*
cpe:2.3:a:bea:weblogic_server:8.1::express:::::
cpe:2.3:a:bea:weblogic_server:8.1:sp1::::::
cpe:2.3:a:bea:weblogic_server:8.1:sp1:express:::::*