← back
CVE-2005-4766

CVE-2005-4766

EPSS 1.4%
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, do not encrypt multicast traffic, which might allow remote attackers to read sensitive cluster synchronization messages by sniffing the multicast traffic.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://dev2dev.bea.com/pub/advisory/157http://secunia.com/advisories/17138http://www.securityfocus.com/bid/15052