Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:ORACLE:WEBLGC-CMD-EXEC
Severity	Critical
Recommended	No
Recommended Action	Drop
Category	APP
Keywords	Oracle Weblogic Server Node Manager Remote Code Execution
Release Date	2020/04/09
Update Number	3270
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: Oracle Weblogic Server Node Manager Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Oracle Weblogic Server Node Manager. A successful attack can lead to arbitrary code execution.

Extended Description

Unspecified vulnerability in the WebLogic Server in Oracle WebLogic Server 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, and 10.3.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Affected Products

Oracle weblogic_server *
Oracle weblogic_server 10.3.0.0.0
Oracle weblogic_server_component *
Oracle weblogic_server_component 10.0
Oracle weblogic_server_component 10.3
Oracle weblogic_server_component 6.1
Oracle weblogic_server_component 7.0
Oracle weblogic_server_component 8.1
Oracle weblogic_server_component 9.0
Oracle weblogic_server_component 9.1
Oracle weblogic_server_component 9.2

References

BugTraq: 37926
CVE: CVE-2010-0073

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Oracle Weblogic Server Node Manager Remote Code Execution

Extended Description

Affected Products

References