Oracle Issues Emergency WebLogic Fix

Application Security | News | Kara Reeder, Monday, February 8, 2010

Tags: Application Security, Oracle, Vulnerabilities and Patches

Just weeks after a Russian security researcher posted details of a vulnerability in Oracle's WebLogic application server, the company is pushing out an emergency patch.

According to Computerworld, the flaw is in WebLogic's Node Manager software. Oracle admits that if a hacker gains access to the administrator's port, the results could be devastating:

A successful exploitation of this vulnerability may result in a full compromise of the targeted server on Windows. On other platforms (Unix, Linux, etc.), the attacker may gain access to the targeted server with the same privileges as the WebLogic server processes.

The flaw affects WebLogic versions 7 and higher. Oracle recommends that the fix be applied as soon as possible.

Comments (0)

Comments

Post new comment

Kara Reeder

Kara joined the IT Business Edge editorial team in February 2007 after working for ProQuest Information and Technology. Kara covers all areas of technology news for ITBE.com.

Oracle Issues Emergency WebLogic Fix

Comments

Post new comment

Kara Reeder

Subscribe to Our Newsletter

Stay Connected to
Network Security Edge

More IT Business Edge Network Sites

Oracle Issues Emergency WebLogic Fix

Comments

Post new comment

Kara Reeder

Subscribe to Our Newsletter

Stay Connected toNetwork Security Edge

More IT Business Edge Network Sites

Stay Connected to
Network Security Edge