CVE-2007-0425

{"id": "CVE-2007-0425", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-01-23T00:28:00.000", "references": [{"url": "http://dev2dev.bea.com/pub/advisory/222", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://osvdb.org/38515", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/23750", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017525", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/0213", "source": "cve@mitre.org"}, {"url": "http://dev2dev.bea.com/pub/advisory/222", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/38515", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/23750", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1017525", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/0213", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in BEA WebLogic Platform and Server 8.1 through 8.1 SP5, and JRockit 1.4.2 R4.5 and earlier, allows attackers to gain privileges via unspecified vectors, related to an \"overflow condition,\" probably a buffer overflow."}, {"lang": "es", "value": "Vulnerabilidad no especificada en BEA WebLogic Platform and Server 8.1 hasta 8.1 SP5, y JRockit 1.4.2 R4.5 y anteriores, permite a los atacantes obtener privilegios a trav\u00e9s de vectores no especificados, relacionados con una \"condici\u00f3n de desbordamiento\", probablemente un desbordamiento de b\u00fafer."}], "lastModified": "2024-11-21T00:25:50.060", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:bea:jrockit:*:r24.5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9979205D-FC70-4FD8-B69F-AFFA4E8E3979", "versionEndIncluding": "1.4.2"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:*:sp5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22897797-8E89-4B31-99B8-B22D6F6056A3", "versionEndIncluding": "8.1"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E08D4CEA-9ACC-4869-BC87-3524A059914F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}