Alert: Oracle Weblogic 0-day
July 29th, 2008
Read the advisory here:
https://support.bea.com/application_content/product_portlets/securityadvisories/2793.html
It appears that without a username and password that a remote user can exploit a buffer overflow in the Weblogic plugin for Apache, potentially exposing confidential information. Time for everyone to patch their Oracle Weblogic installations!
