CVE-2007-0425: Buffer Overflow
First published: Tue Jan 23 2007(Updated: )
Unspecified vulnerability in BEA WebLogic Platform and Server 8.1 through 8.1 SP5, and JRockit 1.4.2 R4.5 and earlier, allows attackers to gain privileges via unspecified vectors, related to an "overflow condition," probably a buffer overflow.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle WebLogic Server | <=8.1 | |
| Oracle WebLogic Server | =8.1 | |
| Oracle Java SE | <=1.4.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2007-0425?
CVE-2007-0425 has a high severity rating due to the potential for attackers to gain elevated privileges.
How do I fix CVE-2007-0425?
To fix CVE-2007-0425, upgrade BEA WebLogic Server and JRockit to the latest patched versions provided by Oracle.
Which products are affected by CVE-2007-0425?
CVE-2007-0425 affects BEA WebLogic Platform and Server 8.1 through SP5, as well as JRockit 1.4.2 R4.5 and earlier versions.
What types of attacks are possible due to CVE-2007-0425?
Exploitation of CVE-2007-0425 could allow attackers to execute arbitrary code or gain unauthorized access to system resources.
When was CVE-2007-0425 disclosed?
CVE-2007-0425 was disclosed in January 2007.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/author
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/bea
- canonical/oracle weblogic server
- version/oracle weblogic server/8.1
- canonical/oracle java se
- version/oracle java se/1.4.2