← back
CVE-2003-1290

CVE-2003-1290

EPSS 2.4%
BEA WebLogic Server and WebLogic Express 6.1, 7.0, and 8.1, with RMI and anonymous admin lookup enabled, allows remote attackers to obtain configuration information by accessing MBeanHome via the Java Naming and Directory Interface (JNDI).
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://dev2dev.bea.com/pub/advisory/162http://secunia.com/advisories/10218http://secunia.com/advisories/18396https://exchange.xforce.ibmcloud.com/vulnerabilities/13752http://www.osvdb.org/3064http://www.securityfocus.com/bid/16215http://www.securityfocus.com/bid/9034