SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   


View Topics  >  Advisory  >  BEA Security Advisory

Apr 16 2008   (BEA Issues Fix for JRockit) Java Runtime Environment Bugs in Image Parsing Library Let Remote Users Gain Privileges
Apr 16 2008   (BEA Issues Fix for JRockit) Java Plug-in Bug Lets Remote Users Execute Local Applications on the Target User's System
Apr 16 2008   (BEA Issues Fix for JRockit) Java Runtime Environment Applet XSLT Transformation Bug Lets Remote Users Gain Privileges
Apr 16 2008   (BEA Issues Fix for JRockit) Java Runtime Environment Lets Remote Applets and Applications Gain Elevated Privileges
Apr 16 2008   (BEA Issues Fix for JRockit) Java Runtime Environment (JRE) XML External Entity Property Lets Remote Users Access URL Resources
Feb 21 2008   (BEA Issues Fix for JRockit) Java Runtime Environment Lets Remote Applets Gain Elevated Privileges
Feb 21 2008   (BEA Issues Fix for JRockit) Java Runtime Environment Applet Caching Bug May Let Remote Users Bypass Network Access Controls
Feb 21 2008   (BEA Issues Fix for JRockit) Java Runtime Environment (JRE) Bugs Let Remote Users Bypass Network Access Restrictions
Feb 21 2008   (BEA Issues Fix for JRockit) Java Web Start Bugs Let Remote Users Read/Write Files on the Target User's System
Feb 21 2008   (BEA Issues Fix for JRockit) Java Web Start Bugs Let Remote Users Rename/Copy Files on the Target User's System
Feb 21 2008   (BEA Issues Fix for JRockit) Java Runtime Environment (JRE) Lets Remote Applets Obscure the Untrusted Applet Warning Banner Display
Feb 20 2008   WebLogic Portal Discloses Web Service WSDL and Policy to Remote Users
Feb 20 2008   WebLogic Portal Administrative Policy Errors May Let Remote Users Access Restricted Pages
Feb 20 2008   WebLogic Portal Entitlement Deletion Bug May Let Remote Users Access Portlets
Feb 20 2008   WebLogic Portal Input Validation Hole in Groupspace Function Permits Cross-Site Scripting Attacks
Feb 20 2008   WebLogic Portal Lets Remote Users Bypass Entitlements
Feb 20 2008   WebLogic Proxy Plugin Lets Remote Users Deny Service
Feb 20 2008   WebLogic Lets Remote Users Bypass the Account Lockout Feature
Feb 20 2008   WebLogic Server Administration Console Input Validation Hole Permits Cross-Site Scripting Attacks
Feb 20 2008   WebLogic Bug Lets Remote Users Bypass Security Policy and Send Messages to a Queue
Feb 20 2008   WebLogic Security Policy Bug May Let Remote Users Access JMS Messages
Feb 20 2008   WebLogic Servlets May Grant Access to Remote Users Based on Modified HTTP Request Header Values
Feb 19 2008   WebLogic Portal Administration Console May Use Non-Secure Sessions
Feb 19 2008   WebLogic Workshop NetUI Input Validation Bugs Permit Cross-Site Scripting Attacks
Feb 19 2008   Plumtree Portal Input Validation Errors Permit Cross-Site Scripting Attacks
Feb 19 2008   WebLogic Server and WebLogic Express Session Security Bug Lets Remote Authenticated Users Gain Elevated Privileges
Feb 19 2008   WebLogic Workshop Input Validation Hole Permits Cross-Site Scripting Attacks
Feb 19 2008   BEA Plumtree Collaboration Server Discloses Files to Remote Users
Nov 28 2007   BEA Plumtree Portal Discloses Internal Hostname and Product Version Number to Remote Users
Nov 28 2007   BEA Plumtree Portal Search Function Discloses Usernames to Remote Users
Aug 29 2007   (BEA Issues Fix for JRockit) Re: Java Secure Socket Extension (JSSE) SSL/TLS Handshake Bug Lets Remote Users Deny Service
Aug 29 2007   WebLogic SSL Clients May Use Null Encryption
May 15 2007   WebLogic Portal Input Validation Hole Permits Cross-Site Scripting Attacks and Entitlement Bug Lets Remote Users Access Resources
May 15 2007   BEA WebLogic Integration Directory Traversal Bug Lets Remote Users List Certain Directories
May 14 2007   BEA WebLogic Server Multiple Bugs Let Remote Users Deny Service, Gain Elevated Privileges
May 14 2007   (BEA Issues Fix for WebLogic) OpenSSL RSA Signatures Can Be Forged
Jan 17 2007   BEA AquaLogic Enterprise Security Lets Disabled User Accounts Access the System
Jan 17 2007   BEA AquaLogic Service Bus Lets Remote Users Bypass Security Checks in Certain Cases
Jan 16 2007   WebLogic Certificate Validation Error May Let Remote Users Access the System in Certain Cases
May 15 2006   WebLogic Server JTA Transactions May Be Sent Unencrypted
May 15 2006   WebLogic Server Quality of Service Error Causes Transaction Coordinator Messages to Be Sent Unencrypted
May 15 2006   WebLogic Server Admin Password Reset Mechanism May Disclose the Password to Local Users
May 15 2006   WebLogic JSP Compilation Error May Allow Remote Users to View JSP Source Code
May 15 2006   WebLogic Server Console Displays the Domain Name Prior to Authentication
May 15 2006   WebLogic Server Records Failed User Passwords in the Server Log File
May 15 2006   WebLogic Server May Incorrectly Remove JDBC Security Policies
May 15 2006   WebLogic Server May Disclose Internal Network Addresses
May 15 2006   WebLogic Server May Let Applications Obtain Private Keys
May 15 2006   WebLogic 'stopWebLogic.sh' Displays the Administrative Password When Typed By the Administrator
Mar 20 2006   WebLogic XML Document Parsing Memory Error Lets Remote Users Deny Service
Jan 24 2006   BEA WebLogic Multiple Bugs Let Remote Users Deny Service, Obtain Information, and Access Restricted Resources
Oct 10 2005   BEA WebLogic Server Multiple Bugs Let Remote Users Deny Service, Obtain Information, and Conduct Cross-Site Scripting Attacks
Aug 22 2005   WebLogic Portal Access Control Flaw May Grant Remote Users Access to Entitled Pages
May 25 2005   BEA WebLogic Server and WebLogic Portal Have Multiple Vulnerabilities
Feb 14 2005   BEA WebLogic Discloses the Reason for Authentication Failure to Remote Users







Home   |    View Topics   |    Search   |    Contact Us

Copyright 2012, SecurityGlobal.net LLC