Oracle WebLogic Security Patch CVE-2010-0073 released

Posted by Dirk Nachbar on Monday, February 15, 2010
A few days ago Oracle released a security patch for the Oracle WebLogic Server, mainly all releases of the Oracle WebLogic Server are affected

  • Oracle WebLogic Server 10.3.1 & 10.3.2
  • Oracle WebLogic Server 10.3.0
  • Oracle WebLogic Server 10.0
  • Oracle WebLogic Server 7.0 & 8.1 & 9.0 & 9.1 & 9.2

The CVSS Base Score for this security hole is 10 (!!), but only on Windows Platforms. On Unix Platforms the Base Score is just 7.5 (which is still high enough).

So it's really advisable to install this Security Patch, detailed informations can be found under http://www.oracle.com/technology/deploy/security/alerts/alert-cve-2010-0073.html