Security Advisory

CVE-2008-3257

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-07-22 16:00:00

Last updated 2024-08-07 09:28:41

Assigner mitre

State PUBLISHED

Description

Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and earlier allows remote attackers to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /.jsp" in an HTTP request.

← Browse all CVEs View on cve.org ↗