CVE-2005-1748
CVSS5.0
发布时间 :2005-05-24 00:00:00
修订时间 :2011-03-07 21:22:46
NMCO    

[原文]The embedded LDAP server in BEA WebLogic Server and Express 8.1 through Service Pack 4, and 7.0 through Service Pack 5, allows remote anonymous binds, which may allow remote attackers to view user entries or cause a denial of service.


[CNNVD]BEA WebLogic Server和WebLogic Express多个远程漏洞(CNNVD-200505-1178)

        BEA WebLogic Server和Express 8.1至Service Pack 4版本以及7.0至Service Pack 5版本的嵌入式LDAP服务器允许远程匿名绑定,这使得远程攻击者可以查看用户条目或发起拒绝服务攻击。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:bea:weblogic_server:6.1:sp1BEA Systems WebLogic Server 6.1 SP1
cpe:/a:bea:weblogic_server:7.0:sp2
cpe:/a:bea:weblogic_server:7.0.0.1BEA Systems WebLogic Server 7.0.0.1
cpe:/a:bea:weblogic_server:6.1:sp6BEA Systems WebLogic Server 6.1 SP6
cpe:/a:bea:weblogic_server:7.0.0.1:sp4:expressBEA Systems WebLogic Express 7.0.0.1 SP4
cpe:/a:bea:weblogic_server:8.1:sp1:win32BEA Systems WebLogic Server 8.1 SP1 Win32
cpe:/a:bea:weblogic_server:7.0:sp5:express
cpe:/a:bea:weblogic_server:8.1:sp4BEA Systems WebLogic Server 8.1 SP4
cpe:/a:bea:weblogic_server:6.1:sp3:win32BEA Systems WebLogic Server 6.1 SP3 Win32
cpe:/a:bea:weblogic_server:6.1:sp4:win32BEA Systems WebLogic Server 6.1 SP4 Win32
cpe:/a:bea:weblogic_server:7.0.0.1:sp1BEA Systems WebLogic Server 7.0.0.1 SP1
cpe:/a:bea:weblogic_server:7.0:sp2:win32
cpe:/a:bea:weblogic_server:6.1:sp3:expressBEA Systems WebLogic Express 6.1 SP3
cpe:/a:bea:weblogic_server:7.0.0.1:sp2:expressBEA Systems WebLogic Express 7.0.0.1 SP2
cpe:/a:bea:weblogic_server:6.0:sp2:express
cpe:/a:bea:weblogic_server:7.0.0.1::express
cpe:/a:bea:weblogic_server:7.0:sp4:express
cpe:/a:bea:weblogic_server:7.0:sp1
cpe:/a:bea:weblogic_server:7.0BEA Systems WebLogic Server 7.0
cpe:/a:bea:weblogic_server:7.0:sp1:win32
cpe:/a:bea:weblogic_server:6.1BEA Systems WebLogic Server 6.1
cpe:/a:bea:weblogic_server:8.1:sp3:win32BEA Systems WebLogic Server 8.1 SP3 Win32
cpe:/a:bea:weblogic_server:8.1:sp3:expressBEA Systems WebLogic Express 8.1 SP3
cpe:/a:bea:weblogic_server:8.1:sp2:win32BEA Systems WebLogic Server 8.1 SP2 Win32
cpe:/a:bea:weblogic_server:6.1:sp5:expressBEA Systems WebLogic Express 6.1 SP5
cpe:/a:bea:weblogic_server:7.0.0.1::win32
cpe:/a:bea:weblogic_server:6.1:sp1:win32BEA Systems WebLogic Server 6.1 SP1 Win32
cpe:/a:bea:weblogic_server:6.0:sp2:win32
cpe:/a:bea:weblogic_server:7.0.0.1:sp3:expressBEA Systems WebLogic Express 7.0.0.1 SP3
cpe:/a:bea:weblogic_server:6.1:sp5BEA Systems WebLogic Server 6.1 SP5
cpe:/a:bea:weblogic_server:7.0:sp4:win32
cpe:/a:bea:weblogic_server:6.1:sp4BEA Systems WebLogic Server 6.1 SP4
cpe:/a:bea:weblogic_server:7.0::win32
cpe:/a:bea:weblogic_server:8.1:sp1:expressBEA Systems WebLogic Express 8.1 SP1
cpe:/a:bea:weblogic_server:7.0.0.1:sp4BEA Systems WebLogic Server 7.0.0.1 SP4
cpe:/a:bea:weblogic_server:7.0.0.1:sp1:expressBEA Systems WebLogic Express 7.0.0.1 SP1
cpe:/a:bea:weblogic_server:6.1:sp2:win32BEA Systems WebLogic Server 6.1 SP2 Win32
cpe:/a:bea:weblogic_portal:8.0
cpe:/a:bea:weblogic_server:6.1::express
cpe:/a:bea:weblogic_server:7.0:sp5:win32
cpe:/a:bea:weblogic_server:6.0:sp1:win32
cpe:/a:bea:weblogic_server:8.1::express
cpe:/a:bea:weblogic_server:6.1:sp1:expressBEA Systems WebLogic Express 6.1 SP1
cpe:/a:bea:weblogic_server:6.0::win32
cpe:/a:bea:weblogic_server:7.0.0.1:sp3BEA Systems WebLogic Server 7.0.0.1 SP3
cpe:/a:bea:weblogic_server:7.0:sp1:express
cpe:/a:bea:weblogic_server:8.1:sp1BEA Systems WebLogic Server 8.1 SP1
cpe:/a:bea:weblogic_server:6.1:sp2:expressBEA Systems WebLogic Express 6.1 SP2
cpe:/a:bea:weblogic_server:8.1:sp4:expressBEA Systems WebLogic Express 8.1 SP4
cpe:/a:bea:weblogic_server:6.0BEA Systems WebLogic Server 6.0
cpe:/a:bea:weblogic_server:7.0::express
cpe:/a:bea:weblogic_server:8.1:sp3BEA Systems WebLogic Server 8.1 SP3
cpe:/a:bea:weblogic_server:6.0::express
cpe:/a:bea:weblogic_server:7.0.0.1:sp1:win32BEA Systems WebLogic Server 7.0.0.1 SP1 Win32
cpe:/a:bea:weblogic_server:6.1::win32
cpe:/a:bea:weblogic_server:7.0.0.1:sp2:win32BEA Systems WebLogic Server 7.0.0.1 SP2 Win32
cpe:/a:bea:weblogic_server:7.0:sp3:win32
cpe:/a:bea:weblogic_server:7.0:sp3
cpe:/a:bea:weblogic_server:6.1:sp5:win32BEA Systems WebLogic Server 6.1 SP5 Win32
cpe:/a:bea:weblogic_server:6.0:sp2
cpe:/a:bea:weblogic_server:7.0:sp5
cpe:/a:bea:weblogic_server:6.1:sp2BEA Systems WebLogic Server 6.1 SP2
cpe:/a:bea:weblogic_server:8.1:sp2:expressBEA Systems WebLogic Express 8.1 SP2
cpe:/a:bea:weblogic_server:6.1:sp3BEA Systems WebLogic Server 6.1 SP3
cpe:/a:bea:weblogic_server:8.1::win32
cpe:/a:bea:weblogic_server:6.1:sp4:expressBEA Systems WebLogic Express 6.1 SP4
cpe:/a:bea:weblogic_server:6.1:sp6:win32BEA Systems WebLogic Server 6.1 SP6 Win32
cpe:/a:bea:weblogic_server:7.0:sp4
cpe:/a:bea:weblogic_server:6.0:sp1
cpe:/a:bea:weblogic_server:8.1:sp4:win32BEA Systems WebLogic Server 8.1 SP4 Win32
cpe:/a:bea:weblogic_server:7.0:sp2:express
cpe:/a:bea:weblogic_server:7.0:sp3:express
cpe:/a:bea:weblogic_server:7.0.0.1:sp2BEA Systems WebLogic Server 7.0.0.1 SP2
cpe:/a:bea:weblogic_server:6.0:sp1:express
cpe:/a:bea:weblogic_server:8.1:sp2BEA Systems WebLogic Server 8.1 SP2
cpe:/a:bea:weblogic_server:8.1BEA Systems WebLogic Server 8.1

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1748
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1748
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200505-1178
(官方数据源) CNNVD

- 其它链接及资源

http://www.vupen.com/english/advisories/2005/0608
(UNKNOWN)  VUPEN  ADV-2005-0608
http://www.securityfocus.com/bid/13717
(UNKNOWN)  BID  13717
http://securitytracker.com/id?1014049
(UNKNOWN)  SECTRACK  1014049
http://secunia.com/advisories/15486
(VENDOR_ADVISORY)  SECUNIA  15486
http://dev2dev.bea.com/pub/advisory/131
(VENDOR_ADVISORY)  BEA  BEA05-81.00

- 漏洞信息

BEA WebLogic Server和WebLogic Express多个远程漏洞
中危 设计错误
2005-05-24 00:00:00 2005-10-20 00:00:00
远程  
        BEA WebLogic Server和Express 8.1至Service Pack 4版本以及7.0至Service Pack 5版本的嵌入式LDAP服务器允许远程匿名绑定,这使得远程攻击者可以查看用户条目或发起拒绝服务攻击。

- 公告与补丁

        暂无数据

- 漏洞信息

16839
BEA WebLogic LDAP Server Anonymous Bind
Remote / Network Access Denial of Service, Information Disclosure
Loss of Confidentiality, Loss of Availability
Exploit Public

- 漏洞描述

WebLogic LDAP server contains a flaw that may lead to an unauthorized information disclosure and also allow a remote denial of service. The issue is triggered when a remote user anonymously binds to the embedded LDAP server which will disclose user entries (but not attributes) if the schema can be guessed. It is also possible to launch a denial of service against the LDAP server by creating multiple connections using this anonymous bind. This will result in a lost of confidentiality and availability of the LDAP service.

- 时间线

2005-05-24 Unknow
2005-05-24 Unknow

- 解决方案

For WebLogic version 8.1, upgrade to version 8.1 SP4 first and apply the patch released by the vendor. For WebLogic version 7.0, upgrade to version 7.0 SP6 as it has been reported to fix this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站