BEA WebLogic Server and Express bypass asterisk role
| weblogic-asterisk-role-bypass (16534) |  Low Risk |
Description:
BEA WebLogic Server and Express could allow a local attacker to gain unauthorized access to specific resources. WebLogic Server and Express fails to properly implement the Servlet 2.3 specification, which could allow a user without a defined role in a Web application protected with a role name of asterisk (*), to gain unauthorized access to this application.
Platforms Affected:
- BEA, WebLogic Server 7.0 SP5
- BEA, WebLogic Server 7.0 SP5 Express
- BEA, WebLogic Server 8.1 SP2 Express
- BEA, WebLogic Server 8.1 SP2
Remedy:
For WebLogic Server and WebLogic Express 8.1:
Upgrade to Service Pack 2 and apply the CR175310_810sp2 patch or upgrade to Service Pack 3, when it becomes available, as listed in BEA Systems Inc. Security Advisory BEA04-64.00. See References.
For WebLogic Server and WebLogic Express 7.0:
Upgrade to Service Pack 5 and apply the CR175310_700sp5 patch or upgrade to Service Pack 6, when it becomes available, as listed in BEA Systems Inc. Security Advisory BEA04-64.00. See References.
Consequences:
Bypass Security
References:
- BEA Systems Inc. Security Advisory BEA04-64.00, Patches available to protect Web Applications at https://support.bea.com/application_content/product_portlets/securityadvisories/5.html.
- BID-10624: BEA WebLogic Server And WebLogic Express Application Role Unauthorized Access Vulnerability
Reported:
Jun 28, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net