Vulnerability Details CVE-2002-1030
Race condition in Performance Pack in BEA WebLogic Server and Express 5.1.x, 6.0.x, 6.1.x and 7.0 allows remote attackers to cause a denial of service (crash) via a flood of data and connections.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.6%
CVSS Severity
CVSS v2 Score 2.6
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0008.html
- http://dev2dev.bea.com/resourcelibrary/advisoriesdetail.jsp?highlight=advisoriesnotifications&path=components%2Fdev2dev%2Fresourcelibrary%2Fadvisoriesnotifications%2Fadvisory_BEA02-19.htm
- http://online.securityfocus.com/archive/1/281046
- http://www.iss.net/security_center/static/9486.php
- http://www.securityfocus.com/bid/5159
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0008.html
- http://dev2dev.bea.com/resourcelibrary/advisoriesdetail.jsp?highlight=advisoriesnotifications&path=components%2Fdev2dev%2Fresourcelibrary%2Fadvisoriesnotifications%2Fadvisory_BEA02-19.htm
- http://online.securityfocus.com/archive/1/281046
- http://www.iss.net/security_center/static/9486.php
- http://www.securityfocus.com/bid/5159
Products affected by CVE-2002-1030
-
cpe:2.3:a:bea:weblogic_server:5.1
-
cpe:2.3:a:bea:weblogic_server:6.0
-
cpe:2.3:a:bea:weblogic_server:6.1
-
cpe:2.3:a:bea:weblogic_server:7.0