CVE-2009-1974

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Servlet Container Package.

Published: Jul 15, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-1974
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / bea_product_suite	9.1	9.1.x
oracle / bea_product_suite	8.1-sp6	8.1-sp6.x
oracle / bea_product_suite	10.0-mp1	10.0-mp1.x
oracle / bea_product_suite	7.0-sp7	7.0-sp7.x
oracle / bea_product_suite	9.0	9.0.x
oracle / bea_product_suite	10.3	10.3.x
oracle / bea_product_suite	9.2-mp3	9.2-mp3.x

http://osvdb.org/55906
http://secunia.com/advisories/35776
http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html
http://www.securityfocus.com/bid/35674
http://www.securitytracker.com/id?1022561
http://www.vupen.com/english/advisories/2009/1900
https://exchange.xforce.ibmcloud.com/vulnerabilities/51758

Vulnerability Database

289,697

CVE-2009-1974