BEA : Security Vulnerabilities, CVEs, Published In 2000 CVSS score >= 8

CVE-2000-0685

BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow remote attackers to compile and execute Java JHTML code by directly invoking the servlet on any source file.
Max CVSS
10.0
EPSS Score
3.93%
Published
2000-10-20
Updated
2008-09-10

CVE-2000-0684

BEA WebLogic 5.1.x does not properly restrict access to the JSPServlet, which could allow remote attackers to compile and execute Java JSP code by directly invoking the servlet on any source file.
Max CVSS
10.0
EPSS Score
1.05%
Published
2000-10-20
Updated
2008-09-10

CVE-2000-0681

Buffer overflow in BEA WebLogic server proxy plugin allows remote attackers to execute arbitrary commands via a long URL with a .JSP extension.
Max CVSS
10.0
EPSS Score
2.00%
Published
2000-10-20
Updated
2008-09-05
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close