CVE-2005-1748

high

Description

The embedded LDAP server in BEA WebLogic Server and Express 8.1 through Service Pack 4, and 7.0 through Service Pack 5, allows remote anonymous binds, which may allow remote attackers to view user entries or cause a denial of service.

References

http://www.vupen.com/english/advisories/2005/0608

http://www.securityfocus.com/bid/13717

http://securitytracker.com/id?1014049

http://secunia.com/advisories/15486

http://dev2dev.bea.com/pub/advisory/131

Details

Source: Mitre, NVD

Published: 2005-05-24

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

Detections

Analytics