CVE-2007-0410
BEA WebLogic 7.0-7.0 SP6, 8.1-8.1 SP5, 9.0, 9.1 - Denial of Service via Thread Management
Title source: llmDescription
Unspecified vulnerability in the thread management in BEA WebLogic 7.0 through 7.0 SP6, 8.1 through 8.1 SP5, 9.0, and 9.1, when T3 authentication is used, allows remote attackers to cause a denial of service (thread and system hang) via unspecified "sequences of events."
References (6)
Core 6
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_bea
http://dev2dev.bea.com/pub/advisory/204
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1017525
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23750
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/22082
Broken Link vdb-entry
x_refsource_osvdb
http://osvdb.org/38502
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0213
Scores
EPSS
0.0189
EPSS Percentile
83.4%
Details
Status
published
Products (4)
bea/weblogic_server
7.0 (7 CPE variants)
bea/weblogic_server
8.1 (6 CPE variants)
bea/weblogic_server
9.0
bea/weblogic_server
9.1
Published
Jan 23, 2007
Tracked Since
Feb 18, 2026