BEA WebLogic Server and WebLogic Express 9.0, 8.1, and 7.0 lock out the admin user account after multiple incorrect password guesses, which allows remote attackers who know or guess the admin account name to cause a denial of service (blocked admin logins).
References
Link | Resource |
---|---|
http://dev2dev.bea.com/pub/advisory/155 | Patch Vendor Advisory |
http://secunia.com/advisories/17138 | Vendor Advisory |
http://www.securityfocus.com/bid/15052 | Patch |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:22:44
Updated: 2022-10-03T16:22:44
Reserved: 2022-10-03T00:00:00
Link: CVE-2005-4764
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-12-31T05:00:00.000
Modified: 2008-09-05T20:57:45.873
Link: CVE-2005-4764
JSON object: View
Redhat Information
No data.
CWE