virus logo Intrusion Prevention

Oracle.WebLogic.Server.Plug-ins.Certificate.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a buffer-overflow vulnerability in BEA WebLogic Server Plugins.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted certificate. It allows a remote attacker to inject arbitrary code.

affected-products-logoAffected Products

Oracle WebLogic Server 10.3
Oracle WebLogic Server 10.0 released through MP1
Oracle WebLogic Server 9.2 released through MP3
Oracle WebLogic Server 9.1
Oracle WebLogic Server 9.0
Oracle WebLogic Server 8.1 released through SP6
Oracle WebLogic Server 7.0 released through SP7

Impact logoImpact

System compromise

recomended-action-logoRecommended Actions

Apply the patch supplied by the vendor:

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-12-22 16.984 Name:Oracle.
BEA.
WebLogic.
Server.
Plug-ins.
Certificate.
Buffer.
Overflow:Oracle.
WebLogic.
Server.
Plug-ins.
Certificate.
Buffer.
Overflow

References

http://secunia.com/secunia_research/2009-22/
ID 17400
Created Jun 30, 2009
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2009-1016
Exploit Prediction Score 33.89%
Default Action drop
Active
Affected OS All
Affected App Oracle