Remote Anonymous Binds Vulnerability in BEA WebLogic Server and Express

Remote Anonymous Binds Vulnerability in BEA WebLogic Server and Express

CVE-2005-1748 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The embedded LDAP server in BEA WebLogic Server and Express 8.1 through Service Pack 4, and 7.0 through Service Pack 5, allows remote anonymous binds, which may allow remote attackers to view user entries or cause a denial of service.

Learn more about our Cis Benchmark Audit For Bind.