Security Advisory

CVE-2005-4756

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-04-01 02:00:00
Last updated 2024-09-16 20:01:31
Assigner mitre
State PUBLISHED

Description

BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP5 and earlier, do not properly validate derived Principals with multiple PrincipalValidators, which might allow attackers to gain privileges.