{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-12-13T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Image Converter functionality in BEA WebLogic Mobility Server 3.3, 3.5, and 3.6 through 3.6 SP1 allows remote attackers to obtain application file and resource access via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-07T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "BEA07-182.00", "tags": ["vendor-advisory", "x_refsource_BEA"], "url": "http://dev2dev.bea.com/pub/advisory/255"}, {"name": "ADV-2007-4204", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/4204"}, {"name": "weblogic-imageconverter-info-disclosure(39005)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39005"}, {"name": "41880", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/41880"}, {"name": "28078", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/28078"}, {"name": "1019091", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1019091"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-6384", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the Image Converter functionality in BEA WebLogic Mobility Server 3.3, 3.5, and 3.6 through 3.6 SP1 allows remote attackers to obtain application file and resource access via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "BEA07-182.00", "refsource": "BEA", "url": "http://dev2dev.bea.com/pub/advisory/255"}, {"name": "ADV-2007-4204", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/4204"}, {"name": "weblogic-imageconverter-info-disclosure(39005)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39005"}, {"name": "41880", "refsource": "OSVDB", "url": "http://osvdb.org/41880"}, {"name": "28078", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28078"}, {"name": "1019091", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1019091"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-6384", "datePublished": "2007-12-15T02:00:00", "dateReserved": "2007-12-14T00:00:00", "dateUpdated": "2017-08-07T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bea:weblogic_mobility_server:3.3:*:*:*:*:*:*:*", "matchCriteriaId": "5A888C92-98AB-4364-8096-38E0601206B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:bea:weblogic_mobility_server:3.5:*:*:*:*:*:*:*", "matchCriteriaId": "F67944AC-7E54-49EC-896F-BCDB0A6F5089", "vulnerable": true}, {"criteria": "cpe:2.3:a:bea:weblogic_mobility_server:3.6:*:*:*:*:*:*:*", "matchCriteriaId": "75B86EF7-9EDE-494B-A8CE-A07E97CFE215", "vulnerable": true}, {"criteria": "cpe:2.3:a:bea:weblogic_mobility_server:3.6:sp1:*:*:*:*:*:*", "matchCriteriaId": "19062190-0250-41AE-9B29-C8F4C497F06B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Image Converter functionality in BEA WebLogic Mobility Server 3.3, 3.5, and 3.6 through 3.6 SP1 allows remote attackers to obtain application file and resource access via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en la funcionalidad Image Converter de BEA WebLogic Mobility Server 3.3, 3.5, y 3.6 hasta la 3.6 SP1. Permite que atacantes remotos obtengan el fichero de solicitud y acceso a recursos, a trav\u00e9s de vectores sin especificar."}], "id": "CVE-2007-6384", "lastModified": "2017-08-08T01:29:07.587", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-12-15T02:46:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://dev2dev.bea.com/pub/advisory/255"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/41880"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/28078"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securitytracker.com/id?1019091"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/4204"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39005"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}