VYPR
Unrated severityNVD Advisory· Published May 24, 2005· Updated Jun 16, 2026

CVE-2005-1746

CVE-2005-1746

Description

The cluster cookie parsing code in BEA WebLogic Server 7.0 through Service Pack 5 attempts to contact any host or port specified in a cookie, even when it is not in the cluster, which allows remote attackers to cause a denial of service (cluster slowdown) via modified cookies.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

77
  • Bea/WebLogic Server76 versions
    cpe:2.3:a:bea:weblogic_server:6.0:*:*:*:*:*:*:*+ 75 more
    • cpe:2.3:a:bea:weblogic_server:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:*:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:sp1:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:sp1:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:sp2:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:sp2:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.0:*:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:*:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp1:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp1:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp1:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp2:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp2:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp2:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp3:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp3:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp3:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp4:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp4:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp4:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp5:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp5:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp5:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp6:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:sp6:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:6.1:*:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:*:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp1:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp2:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp3:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp3:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp4:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:sp4:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0.0.1:*:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:*:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp1:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp1:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp2:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp2:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp3:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp3:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp4:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp4:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp5:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:sp5:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:7.0:*:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:*:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp1:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp1:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp1:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp2:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp2:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp2:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp3:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp3:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp3:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp4:*:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp4:express:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:sp4:win32:*:*:*:*:*
    • cpe:2.3:a:bea:weblogic_server:8.1:*:win32:*:*:*:*:*
    • (no CPE)range: >=7.0, <=7.0 Service Pack 5
  • cpe:2.3:a:oracle:weblogic_portal:8.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.