CVE-2009-1016
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to IIS. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on claims from a reliable researcher that this is a stack-based buffer overflow involving an unspecified Server Plug-in and a crafted SSL certificate.
Vulnerabilidad no especificada en el componente WebLogic Server de BEA Product Suite v10.3, v10.0 MP1, v9.2 MP3, v9.1, v9.0, v8.1 SP6 y v7.0 SP7; permite a usuarios autenticados en remoto comprometer la confidencialidad, integridad y disponibilidad. Está relacionado con IIS.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2009-03-19 CVE Reserved
- 2009-04-15 CVE Published
- 2024-07-09 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/secunia_research/2009-23 | X_refsource_misc | |
| http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html | X_refsource_confirm |
|
| http://www.securityfocus.com/bid/34461 | Vdb Entry | |
| http://www.securitytracker.com/id?1022059 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA09-105A.html | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/64934 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Bea Product Suite Search vendor "Oracle" for product "Bea Product Suite" | 7.0 Search vendor "Oracle" for product "Bea Product Suite" and version "7.0" | sp7 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Bea Product Suite Search vendor "Oracle" for product "Bea Product Suite" | 8.1 Search vendor "Oracle" for product "Bea Product Suite" and version "8.1" | sp6 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Bea Product Suite Search vendor "Oracle" for product "Bea Product Suite" | 9.0 Search vendor "Oracle" for product "Bea Product Suite" and version "9.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Bea Product Suite Search vendor "Oracle" for product "Bea Product Suite" | 9.1 Search vendor "Oracle" for product "Bea Product Suite" and version "9.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Bea Product Suite Search vendor "Oracle" for product "Bea Product Suite" | 9.2 Search vendor "Oracle" for product "Bea Product Suite" and version "9.2" | mp3 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Bea Product Suite Search vendor "Oracle" for product "Bea Product Suite" | 10.0 Search vendor "Oracle" for product "Bea Product Suite" and version "10.0" | mp1 |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Bea Product Suite Search vendor "Oracle" for product "Bea Product Suite" | 10.3 Search vendor "Oracle" for product "Bea Product Suite" and version "10.3" | - |
Affected
| ||||||