NVD

Id
70294  
Name
CVE-2005-4705  
Description
BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7, when a Java client application creates an SSL connection to the server after it has already created an insecure connection, will use the insecure connection, which allows remote attackers to sniff the connection.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-03  
Published
2005-12-31  
Modified Date
2008-09-05  
Seq
2005-4705  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
362488 70294 CVE-2005-4705 BEA05-86.00  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
62366 JVNDB-2005-000568 BEA 製品におけるクライアントと WebLogic サーバの通信に SSL が使用されない脆弱性 ------------ CVE-2005-4705 15907 CVE-2005-4705 70294 5 http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000568.html 2005-10-10 2007-04-01 View