Page 27 of 132 results (0.005 seconds)

CVSS: 2.6EPSS: 0%CPEs: 8EXPL: 0

BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to obtain sensitive information that was intended for other users. • http://dev2dev.bea.com/pub/advisory/38 http://www.iss.net/security_center/static/10221.php http://www.securityfocus.com/bid/5819 •

CVSS: 2.6EPSS: 0%CPEs: 40EXPL: 0

Race condition in Performance Pack in BEA WebLogic Server and Express 5.1.x, 6.0.x, 6.1.x and 7.0 allows remote attackers to cause a denial of service (crash) via a flood of data and connections. • http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0008.html http://dev2dev.bea.com/resourcelibrary/advisoriesdetail.jsp?highlight=advisoriesnotifications&path=components%2Fdev2dev%2Fresourcelibrary%2Fadvisoriesnotifications%2Fadvisory_BEA02-19.htm http://online.securityfocus.com/archive/1/281046 http://www.iss.net/security_center/static/9486.php http://www.securityfocus.com/bid/5159 •