SecurityTracker.com Archives - BEA WebLogic 'security-role-assignment' Coding Error May Delete Access Controls Tag

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us | Help |

SecurityTracker
Archives

Welcome to SecurityTracker!

Click to Sign Up

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Sign Up!

Category: Application (Web Server/CGI) > WebLogic

Vendors: BEA Systems

BEA WebLogic 'security-role-assignment' Coding Error May Delete Access Controls Tag

SecurityTracker Alert ID: 1010128

CVE Reference: CAN-2004-0470 (Links to External Site)

Updated: May 20 2004

Original Entry Date: May 11 2004

Impact: User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 8.1 SP2 and prior, 7.0 SP5 and prior

Description: A vulnerability was reported in BEA WebLogic Server and Express sites that use WebLogic Builder to edit 'weblogic.xml' files or use the SecurityRoleAssignmentMBean.toXML() method.

BEA Systems reported that if a weblogic.xml file contains <security-role-assignment> tags that do not contain any <principal-name> tags, the tags may be removed due to a coding error when edited using WebLogic Builder or processed using the SecurityRoleAssignmentMBean.toXML() method. The Servlet container will then assign defaults for the security roles (a group of the same name is the default). As a result, a remote user may be able to gain unauthorized access to the web application.

Impact: A remote user may be able to gain unauthorized access to a web application.

Solution: The vendor indicates that you should examine any weblogic.xml file that has been edited by Weblogic Builder to ensure that all of the desired <security-role-assignment> tags are still in the file.

For WebLogic Server and WebLogic Express version 8.1, upgrade to WebLogic Server and WebLogic Express version 8.1 Service Pack 2:

ftp://ftpna.beasys.com/pub/releases/security/CR171885_810sp2.jar

WebLogic Server version 8.1 Service Pack 3 will reportedly include this fix.

For WebLogic Server and WebLogic Express version 7.0, upgrade to WebLogic Server and WebLogic Express version 7.0 Service Pack 5:

ftp://ftpna.beasys.com/pub/releases/security/CR171885_70sp5.jar

The vendor reports that WebLogic Server version 7.0 Service Pack 6 will include this fix.

Vendor URL: dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_59.00.jsp (Links to External Site)

Cause: Access control error, State error

Underlying OS: Linux (Any), UNIX (AIX), UNIX (HP/UX), UNIX (Solaris - SunOS), UNIX (Tru64), Windows (NT), Windows (2000)

Message History: None.

Source Message Contents

 

[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us | Help
Copyright 2004, SecurityGlobal.net LLC