CVE-2008-4009

Published: Oct 14, 2008Modified: Apr 23, 2026

5.1

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:P

Exploitability: 4.9 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Affected (1)

Products: Oracle: Bea Product Suite

Oracle

1 product

Bea Product Suite

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Bea Product Suite	Version 9.1

References (12)

http://secunia.com/advisories/32304

Source: secalert_us@oracle.com

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html

Source: secalert_us@oracle.com

http://www.securitytracker.com/id?1021056

Source: secalert_us@oracle.com

http://www.vupen.com/english/advisories/2008/2825

Source: secalert_us@oracle.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/45908

Source: secalert_us@oracle.com

https://support.bea.com/application_content/product_portlets/securityadvisories/2802.html

Source: secalert_us@oracle.com

Vendor Advisory

http://secunia.com/advisories/32304