SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Oracle WebLogic Vendors:   BEA Systems
BEA WebLogic 'security-role-assignment' Coding Error May Delete Access Controls Tag
SecurityTracker Alert ID:  1010128
SecurityTracker URL:  http://securitytracker.com/id/1010128
CVE Reference:   CVE-2004-0470   (Links to External Site)
Updated:  May 20 2004
Original Entry Date:  May 11 2004
Impact:   User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 8.1 SP2 and prior, 7.0 SP5 and prior
Description:   A vulnerability was reported in BEA WebLogic Server and Express sites that use WebLogic Builder to edit 'weblogic.xml' files or use the SecurityRoleAssignmentMBean.toXML() method.

BEA Systems reported that if a weblogic.xml file contains <security-role-assignment> tags that do not contain any <principal-name> tags, the tags may be removed due to a coding error when edited using WebLogic Builder or processed using the SecurityRoleAssignmentMBean.toXML() method. The Servlet container will then assign defaults for the security roles (a group of the same name is the default). As a result, a remote user may be able to gain unauthorized access to the web application.

Impact:   A remote user may be able to gain unauthorized access to a web application.
Solution:   The vendor indicates that you should examine any weblogic.xml file that has been edited by Weblogic Builder to ensure that all of the desired <security-role-assignment> tags are still in the file.

For WebLogic Server and WebLogic Express version 8.1, upgrade to WebLogic Server and WebLogic Express version 8.1 Service Pack 2:

ftp://ftpna.beasys.com/pub/releases/security/CR171885_810sp2.jar

WebLogic Server version 8.1 Service Pack 3 will reportedly include this fix.

For WebLogic Server and WebLogic Express version 7.0, upgrade to WebLogic Server and WebLogic Express version 7.0 Service Pack 5:

ftp://ftpna.beasys.com/pub/releases/security/CR171885_70sp5.jar

The vendor reports that WebLogic Server version 7.0 Service Pack 6 will include this fix.

Vendor URL:  dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_59.00.jsp (Links to External Site)
Cause:   Access control error, State error
Underlying OS:  Linux (Any), UNIX (AIX), UNIX (HP/UX), UNIX (Solaris - SunOS), UNIX (Tru64), Windows (NT), Windows (2000)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC