CVE-2004-2424 Information

Description

BEA WebLogic Server and WebLogic Express 8.1 through 8.1 SP2 allow remote attackers to cause a denial of service (network port consumption) via unknown actions in HTTPS sessions which prevents the server from releasing the network port when the session ends.

Reference

http://dev2dev.bea.com/pub/advisory/7 http://secunia.com/advisories/11864 http://securitytracker.com/id?1010492 http://www.osvdb.org/7076 http://www.securityfocus.com/bid/10544 https://exchange.xforce.ibmcloud.com/vulnerabilities/16419