BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to obtain sensitive information that was intended for other users.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-11-16T21:17:00

Updated: 2024-08-08T03:51:17.575Z

Reserved: 2005-11-16T00:00:00

Link: CVE-2002-2177

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2002-12-31T05:00:00.000

Modified: 2008-09-10T19:16:41.757

Link: CVE-2002-2177

cve-icon Redhat

No data.