CVE-2008-2581
First published: Tue Jul 15 2008(Updated: )
Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 has unknown impact and remote attack vectors related to UDDI Explorer.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle BEA Product Suite | =7.0-sp7 | |
| Oracle BEA Product Suite | =8.1-sp6 | |
| Oracle BEA Product Suite | =9.0 | |
| Oracle BEA Product Suite | =9.1 | |
| Oracle BEA Product Suite | =9.2-mp3 | |
| Oracle BEA Product Suite | =10.0-mp1 | |
| Oracle WebLogic Server | =7.0-sp7 | |
| Oracle WebLogic Server | =8.1-sp6 | |
| Oracle WebLogic Server | =9.0 | |
| Oracle WebLogic Server | =9.1 | |
| Oracle WebLogic Server | =9.2-mp3 | |
| Oracle WebLogic Server | =10.0-mp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securitytracker.com/id?1020498
- http://secunia.com/advisories/31087
- http://secunia.com/advisories/31113
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143
- http://www.vupen.com/english/advisories/2008/2115
- http://www.vupen.com/english/advisories/2008/2109/references
- http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43824
Frequently Asked Questions
What is the severity of CVE-2008-2581?
The severity of CVE-2008-2581 is currently unspecified, but it has potential remote attack vectors.
What versions of Oracle BEA Product Suite are affected by CVE-2008-2581?
CVE-2008-2581 affects Oracle BEA Product Suite versions 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, and 10.0 MP1.
How do I fix CVE-2008-2581?
To fix CVE-2008-2581, ensure that you update your Oracle BEA Product Suite and WebLogic Server to the latest security patches.
Is CVE-2008-2581 a critical vulnerability?
While CVE-2008-2581 is unspecified in terms of criticality, any vulnerability with remote attack vectors should be taken seriously.
Can CVE-2008-2581 be exploited remotely?
Yes, CVE-2008-2581 has potential remote attack vectors enabling exploitation without direct access.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/oracle
- canonical/oracle bea product suite
- version/oracle bea product suite/7.0-sp7
- version/oracle bea product suite/8.1-sp6
- version/oracle bea product suite/9.0
- version/oracle bea product suite/9.1
- version/oracle bea product suite/9.2-mp3
- version/oracle bea product suite/10.0-mp1
- canonical/oracle weblogic server
- version/oracle weblogic server/7.0-sp7
- version/oracle weblogic server/8.1-sp6
- version/oracle weblogic server/9.0
- version/oracle weblogic server/9.1
- version/oracle weblogic server/9.2-mp3
- version/oracle weblogic server/10.0-mp1