Vulnerability Description
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP6 and earlier, in certain "heavy usage" scenarios, report incorrect severity levels for an audit event, which might allow attackers to perform unauthorized actions and avoid detection.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bea | Weblogic Server | 7.0 |
References
- http://dev2dev.bea.com/pub/advisory/143PatchVendor Advisory
- http://secunia.com/advisories/17138Third Party Advisory
- http://www.securityfocus.com/bid/15052Third Party AdvisoryVDB Entry
- http://dev2dev.bea.com/pub/advisory/143PatchVendor Advisory
- http://secunia.com/advisories/17138Third Party Advisory
- http://www.securityfocus.com/bid/15052Third Party AdvisoryVDB Entry
FAQ
What is CVE-2005-4753?
CVE-2005-4753 is a vulnerability with a CVSS score of 5.0 (MEDIUM). BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP6 and earlier, in certain "heavy usage" scenarios, report incorrect severity levels for an audit event, which might allow attack...
How severe is CVE-2005-4753?
CVE-2005-4753 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4753?
Check the references section above for vendor advisories and patch information. Affected products include: Bea Weblogic Server.