BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to obtain sensitive information that was intended for other users.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-16T21:17:00
Updated: 2024-08-08T03:51:17.575Z
Reserved: 2005-11-16T00:00:00
Link: CVE-2002-2177
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2002-12-31T05:00:00.000
Modified: 2008-09-10T19:16:41.757
Link: CVE-2002-2177
Redhat
No data.