CVE-2006-0430

BEA WebLogic Server and WebLogic Express 7.0-9.0 - Denial of Service via Connection Filter Slowdown

Title source: llm

Description

Certain configurations of BEA WebLogic Server and WebLogic Express 9.0, 8.1 through SP5, and 7.0 through SP6, when connection filters are enabled, cause the server to run more slowly, which makes it easier for remote attackers to cause a denial of service (server slowdown).

References (6)

Core 6

Core References

Patch, Vendor Advisory vendor-advisory x_refsource_bea

http://dev2dev.bea.com/pub/advisory/174

Patch vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1015528

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/0313

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/24301

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18592

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/16358

Scores

EPSS 0.0095

EPSS Percentile 76.6%

Details

Status published

Products (3)

bea/weblogic_server 7.0 sp1 (12 CPE variants)

bea/weblogic_server 8.1 sp1 (8 CPE variants)

bea/weblogic_server 9.0 sp1 (10 CPE variants)

Published Jan 25, 2006

Tracked Since Feb 18, 2026