CVE Vulnerabilities

CVE-2008-0898

Published: Feb 22, 2008 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The distributed queue feature in JMS in BEA WebLogic Server 9.0 through 10.0, in certain configurations, does not properly handle when a client cannot send a message to a member of a distributed queue, which allows remote authenticated users to bypass intended access restrictions for protected distributed queues.

Affected Software

Name Vendor Start Version End Version
Weblogic_server Bea 9.2 9.2
Weblogic_server Bea 9.0 9.0
Weblogic_server Bea 9.2 9.2
Weblogic_server Bea 9.0 9.0
Weblogic_server Bea 9.0 9.0
Weblogic_server Bea 9.0 9.0
Weblogic_server Bea 9.0 9.0
Weblogic_server Bea 9.0 9.0
Weblogic_server Bea 9.1 9.1
Weblogic_server Bea 10.0 10.0
Weblogic_server Bea 9.2 9.2
Weblogic_server Bea 9.0 9.0
Weblogic_server Bea 9.1 9.1

References