CVE-2007-0417 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-0417

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

BEA WebLogic Server 7.0 through 7.0 SP7, 8.1 through 8.1 SP5, 9.0, and 9.1, when using the WebLogic Server 6.1 compatibility realm, allows attackers to execute certain EJB container persistence operations with an administrative identity.

Affected Software

Name	Vendor	Start Version	End Version
Weblogic_server	Bea	*	7.0 (including)
Weblogic_server	Bea	7.0 (including)	7.0 (including)
Weblogic_server	Bea	8.1 (including)	8.1 (including)
Weblogic_server	Bea	8.1-sp5 (including)	8.1-sp5 (including)
Weblogic_server	Bea	9.0 (including)	9.0 (including)
Weblogic_server	Bea	9.1 (including)	9.1 (including)

References

http://dev2dev.bea.com/pub/advisory/211
http://osvdb.org/38511
http://secunia.com/advisories/23750
http://securitytracker.com/id?1017525
http://www.securityfocus.com/bid/22082
http://www.vupen.com/english/advisories/2007/0213