CVE-2006-0424 Information

Description

BEA WebLogic Server and WebLogic Express 8.1 through SP4 7.0 through SP6 and 6.1 through SP7 allows remote authenticated guest users to read the server log and obtain sensitive configuration information.

Reference

http://dev2dev.bea.com/pub/advisory/168 http://secunia.com/advisories/18592 http://securitytracker.com/id?1015528 http://www.osvdb.org/22776 http://www.securityfocus.com/bid/16358 http://www.vupen.com/english/advisories/2006/0313 https://exchange.xforce.ibmcloud.com/vulnerabilities/24295