Total vulnerabilities in the database
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP6 and earlier, and WebLogic Server 6.1 SP7 and earlier allow remote attackers to cause a denial of service (memory exhaustion) via crafted non-canonicalized XML documents.
| Software | From | Fixed in |
|---|---|---|
| bea / weblogic_server | 8.1 | 8.1.x |
| bea / weblogic_server | 8.1-sp4 | 8.1-sp4.x |
| bea / weblogic_server | 7.0-sp2 | 7.0-sp2.x |
| bea / weblogic_server | 6.1 | 6.1.x |
| bea / weblogic_server | 6.1-sp1 | 6.1-sp1.x |
| bea / weblogic_server | 6.1-sp4 | 6.1-sp4.x |
| bea / weblogic_server | 6.1-sp6 | 6.1-sp6.x |
| bea / weblogic_server | 6.1-sp7 | 6.1-sp7.x |
| bea / weblogic_server | 8.1-sp1 | 8.1-sp1.x |
| bea / weblogic_server | 6.1-sp2 | 6.1-sp2.x |
| bea / weblogic_server | 8.1-sp3 | 8.1-sp3.x |
| bea / weblogic_server | 7.0-sp3 | 7.0-sp3.x |
| bea / weblogic_server | 7.0-sp5 | 7.0-sp5.x |
| bea / weblogic_server | 6.1-sp5 | 6.1-sp5.x |
| bea / weblogic_server | 7.0-sp1 | 7.0-sp1.x |
| bea / weblogic_server | 7.0-sp4 | 7.0-sp4.x |
| bea / weblogic_server | 6.1-sp3 | 6.1-sp3.x |
| bea / weblogic_server | 8.1-sp2 | 8.1-sp2.x |
| bea / weblogic_server | 7.0-sp6 | 7.0-sp6.x |