Info

Disclosure

Jan 23, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote unauthorized access flaw exists in BEA WebLogic Portal Web Services Remote Portlets (WSRP). Certain carefully crafted URLs' might allow a remote user to access unintended web resources even if those resources are located behind a firewall. Any site using Web Services Remote Portlets (WSRP) of WebLogic Portal are susceptible to this vulnerability.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to v8.1 SP5. In addition, BEA Systems has released a patch for it, which needs to be applied once the upgrade to SP5 is done. WebLogic Portal 8.1 Service Pack 6 will include the functionality in this patch.

Products

WebLogic	Portal	8.1 Service Pack 3
		8.1 Service Pack 4
		8.1 Service Pack 5

References

Security Tracker: 1015528
Bugtraq ID: 16358
Secunia Advisory ID: 18593
CVE ID: 2006-0428 (see also: NVD)
ISS X-Force ID: 24293
VUPEN Advisory: ADV-2006-0312
Keyword: BEA06-115.00
Vendor Specific Solution URL: ftp://ftpna.beasys.com/pub/releases/security/patch_CR229017_81SP5.zip
Vendor Specific Advisory URL: http://dev2dev.bea.com/pub/advisory/172

Credit

EPAM Systems - EPAM Systems

Direct URL: http://osvdb.org/22767