VYPR

Apache Connector In Weblogic Server

by Bea

CVEs (1)

  • CVE-2008-3257Jul 22, 2008
    risk 0.10cvss epss 0.84

    Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and earlier allows remote attackers to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /.jsp" in an HTTP…