268641
|
- |
|
vwar
|
virtual_war
|
PHP remote file include vulnerability in functions_admin.php in Virtual War (VWar) 1.5.0 R10 allows remote attackers to include and execute arbitrary PHP code via unspecified attack vectors. NOTE: t…
|
NVD-CWE-Other
|
CVE-2005-4748
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268642
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier allow remote attackers to cause a denial of service (server thread hang) via unknown attack …
|
NVD-CWE-Other
|
CVE-2005-4750
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268643
|
- |
|
bea
|
weblogic_server
|
The vendor has released multiple advisories, as well as fixes to address these issues.
|
NVD-CWE-Other
|
CVE-2005-4750
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268644
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 and 7.0, during a migration across operating system platforms, do not warn the administrative user about platform differences in URLResource case sensitiv…
|
NVD-CWE-Other
|
CVE-2005-4759
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268645
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier log the Java command line at server startup, which might include sensitive information (pass…
|
NVD-CWE-Other
|
CVE-2005-4761
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268646
|
- |
|
bea
|
weblogic_server
|
An attacker must have read access to the server log to see the sensitive values.
|
NVD-CWE-Other
|
CVE-2005-4761
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268647
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP6 and earlier, and 6.1 SP7 and earlier sometimes stores the boot password in the registry in cleartext, which might allow local use…
|
NVD-CWE-Other
|
CVE-2005-4762
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268648
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP6 and earlier, and 6.1 SP7 and earlier, when Internet Inter-ORB Protocol (IIOP) is used, sometimes include a password in an excepti…
|
NVD-CWE-Other
|
CVE-2005-4763
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268649
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 9.0, 8.1, and 7.0 lock out the admin user account after multiple incorrect password guesses, which allows remote attackers who know or guess the admin account…
|
NVD-CWE-Other
|
CVE-2005-4764
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268650
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier and 7.0 SP6 and earlier, when using the weblogic.Deployer command with the t3 protocol, does not use the secure t3s protocol even when an …
|
NVD-CWE-Other
|
CVE-2005-4765
|
2008-09-6 05:57 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|