CVE-2007-0417 Information

Description

BEA WebLogic Server 7.0 through 7.0 SP7 8.1 through 8.1 SP5 9.0 and 9.1 when using the WebLogic Server 6.1 compatibility realm allows attackers to execute certain EJB container persistence operations with an administrative identity.

Reference

http://dev2dev.bea.com/pub/advisory/211 http://osvdb.org/38511 http://secunia.com/advisories/23750 http://securitytracker.com/id?1017525 http://www.securityfocus.com/bid/22082 http://www.vupen.com/english/advisories/2007/0213