{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"BEA WebLogic Platform version 8.1 Service Pack 2 et versions ant\u00e9rieures.","product":{"name":"Weblogic","vendor":{"name":"Oracle","scada":false}}},{"description":"BEA WebLogic Server et BEA WebLogic Express version 7.0 Service Pack 5 et versions ant\u00e9rieures ;","product":{"name":"Weblogic","vendor":{"name":"Oracle","scada":false}}},{"description":"BEA WebLogic Server et BEA WebLogic Express version 8.1 Service Pack 2 et versions ant\u00e9rieures ;","product":{"name":"Weblogic","vendor":{"name":"Oracle","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s des produits BEA WebLogic permettent \u00e0 un\nutilisateur distant mal intentionn\u00e9 de provoquer un d\u00e9ni de service ou\nde contourner la politique de s\u00e9curit\u00e9.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Business Objects du 08 juin 2004 :","url":"http://support.businessobjects.com/fix/hot/critical/bulletins/security_bulletin_june04.asp"},{"title":"Bulletin de s\u00e9curit\u00e9 de BEA #BEA04_63.00 du 28 juin 2004 :","url":"http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_63.00.jsp"},{"title":"Bulletin de s\u00e9curit\u00e9 de BEA #BEA04_64.00 du 28 juin 2004 :","url":"http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_64.00.jsp"}],"reference":"CERTA-2004-AVI-209","revisions":[{"description":"version initiale.","revision_date":"2004-06-29T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"}],"summary":null,"title":"Vuln\u00e9rabilit\u00e9s de BEA WebLogic","vendor_advisories":[{"published_at":null,"title":"Bulletins de s\u00e9curit\u00e9 BEA BEA04_63.00 et BEA04_64.00","url":null}]}