CVE-2006-1352 Information

Description

BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier 7.0 SP6 and earlier and WebLogic Server 6.1 SP7 and earlier allow remote attackers to cause a denial of service (memory exhaustion) via crafted non-canonicalized XML documents.

Reference

http://dev2dev.bea.com/pub/advisory/183 http://secunia.com/advisories/19310 http://securitytracker.com/id?1015790 http://www.securityfocus.com/bid/17167 http://www.vupen.com/english/advisories/2006/1021 https://exchange.xforce.ibmcloud.com/vulnerabilities/25348