CVE-2005-4705

{"id": "CVE-2005-4705", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-12-31T05:00:00.000", "references": [{"url": "http://dev2dev.bea.com/pub/advisory/141", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/20095", "tags": ["Patch"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7, when a Java client application creates an SSL connection to the server after it has already created an insecure connection, will use the insecure connection, which allows remote attackers to sniff the connection."}], "lastModified": "2008-09-05T20:57:35.517", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5DFE26B3-31F2-4FC0-854D-56EA4D08C28A"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp1:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3B7752C-B297-480A-B3FC-948EA081670C"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63017BF8-D681-45EC-9C31-09D029F1126D"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp2:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71892EC0-E6B1-4214-AC53-06489F711829"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E0B1791-974A-4967-8CF9-33BE8183200B"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp3:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "696F52AE-FEB9-4090-872E-FDFD969F5604"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B12A8B1-F78E-46B3-8872-4C6484345477"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp4:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCED03B6-7565-4F53-8D85-F3391BF66988"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CB2FB0E9-3812-49C5-94F4-3B39D5BE2EED"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp5:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B70F0353-635F-465B-A7E5-AF2D017AB008"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B091903-943F-4822-9F24-9D109B2D76A4"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4DACAC1-ABEC-4310-A0FF-B69EF9BCF273"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:6.1:sp7:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F77E777F-7EB5-4A08-9063-C772B49B5E36"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6828CE4B-91E8-4688-977F-DC7BC21131C8"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp1:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBDB9094-78E8-4CBF-9F5F-321D5174F1EC"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E141AA86-C6D0-4FA8-9268-0FB0635DF9CF"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp2:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FB8930F-C6D8-40B9-8D08-751F5B47229B"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "893D9D88-43C4-4F9F-A364-0585DE6FA9E9"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp3:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D59F9859-7344-43F0-9348-E57FABB9E431"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D34E2925-DE2A-437F-B349-BD7103F4C37E"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp4:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A4EC87D-EF83-48C5-B516-A6A482D9F525"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16E3F943-D920-4C0A-8545-5CF7D792011F"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp5:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BBA04D4-BA2E-4495-85DE-38918A878012"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B46A3EBE-B268-427E-AAB5-62DDF255F1D1"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:7.0:sp6:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A3024422-1CA9-4E5D-80D1-2F4B57FDAEBA"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F5B2A06-CE19-4A57-9566-09FC1E259CDB"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp1:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7560131-A6AC-4BBB-AA2D-C7C63AB51226"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D18E22CC-A0FC-4BC7-AD39-2645F57486C1"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp2:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "893C2387-03E3-4F8E-9029-BC64C64239EF"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9429D939-FCC4-4BA7-90C4-BBEECE7309D0"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp3:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55661356-58E0-49D3-9C79-B4BB5EBE24CF"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0653ACAC-B0D9-4381-AB23-11D24852A414"}, {"criteria": "cpe:2.3:a:bea:weblogic_server:8.1:sp4:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "107C2FC6-BC60-4817-8A21-14C81DA6DEF5"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}