CVE-2005-4704
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2005-4704
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 8.1 through SP3, 7.0 through SP6, and 6.1 through SP7, when SSL is intended to be used, causes an unencrypted protocol to be used in certain unspecified circumstances, which causes user credentials to be sent across the network in cleartext and allows remote attackers to gain privileges.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
BEA WebLogic Server和WebLogic Express 未明得漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
BEA WebLogic Server和WebLogic Express 8.1至SP3、7.0至SP6及6.1至SP7版本存在未明得漏洞,当预期使用SSL时,系统在某些未明情况下使用未加密的协议,使得本地用户凭证以明文方式在网络上发送,让远程攻击者获取权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2005-4704
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2005-4704
请登录查看更多情报信息。
Vendor Advisories for CVE-2005-4704 (1)
Other References for CVE-2005-4704 (1)
Same Patch Batch · n/a · 2006-02-01 · 60 CVEs total
| CVE-2005-4684 | 多个厂商Web浏览器Cookie主机名处理漏洞 | |
| CVE-2006-0495 | MyBB UserCP2.PHP 跨站脚本攻击漏洞 | |
| CVE-2006-0492 | Calendarix多个SQL注入漏洞 | |
| CVE-2006-0491 | SZUserMgnt 用户名参数SQL注入漏洞 | |
| CVE-2006-0490 | ASPThai Forums Login.ASP SQL注入漏洞 | |
| CVE-2006-0493 | MiniGal MG2 Image Gallery 跨站脚本攻击漏洞 | |
| CVE-2005-4688 | PunBB 修改电子邮件账户配置漏洞 | |
| CVE-2005-4687 | PunBB/BLOG:CMS来源欺骗漏洞 | |
| CVE-2005-4686 | PunBB/BLOG:CMS 未明信息泄露漏洞 | |
| CVE-2005-4685 | 多个厂商Web浏览器Cookie主机名处理漏洞 | |
| CVE-2005-4689 | Six Apart Movable Type cookie 帐户名密码泄露漏洞 | |
| CVE-2005-4683 | PADL MigrationTools 敏感信息泄露漏洞 | |
| CVE-2005-4682 | AudienceView error.asp 跨站脚本攻击漏洞 | |
| CVE-2005-4681 | mIRC 缓冲区溢出漏洞 | |
| CVE-2005-4680 | Sophos Anti-Virus 远程攻击漏洞 | |
| CVE-2005-4679 | Internet Explorer 6 for Windows XP URL欺骗漏洞 | |
| CVE-2005-4678 | Apple Safari 远程攻击漏洞 | |
| CVE-2005-4677 | OScommerce Additional_Images.PHP SQL注入漏洞 | |
| CVE-2006-0498 | PHP GEN 多个跨站脚本攻击漏洞 | |
| CVE-2006-0497 | PHP GEN 多个SQL注入漏洞 |
Showing top 20 of 60 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2005-4704
No comments yet