Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple vulnerabilities in BEA WebLogic Server 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 leak sensitive information to remote attackers, including (1) DNS and IP addresses to address to T3 clients, (2) internal sensitive information using GetIORServlet, (3) certain "server details" in exceptions when invalid XML is provided, and (4) a stack trace in a SOAP fault.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BEA WebLogic Server 多个信息泄露漏洞
Vulnerability Description
BEA WebLogic Server 8.1到SP4,7.0到SP6,以及6.1到SP7存在多个漏洞,会向远程攻击者泄露敏感信息,包括(1)DNS和IP地址到T3客户端地址, (2)使用GetIORServlet的内部敏感信息,(3)提供无效XML时的例外中的某些"服务器细节",以及(4)SOAP故障中的堆栈追踪。
CVSS Information
N/A
Vulnerability Type
N/A