Internet Storm Center
Sign In
Sign Up
Handler on Duty:
Johannes Ullrich
Threat Level:
green
Date
Author
Title
ORACLE WEBLOGIC
2010-02-06
Guy Bruneau
Oracle WebLogic Server Security Alert
ORACLE
2021-10-09/a>
Guy Bruneau
Scanning for Previous Oracle WebLogic Vulnerabilities
2020-05-05/a>
Russ McRee
Cloud Security Features Don't Replace the Need for Personnel Security Capabilities
2019-06-19/a>
Johannes Ullrich
Critical Actively Exploited WebLogic Flaw Patched CVE-2019-2729
2018-07-17/a>
Scott Fendley
Oracle Critical Patch Update Release
2017-10-30/a>
Johannes Ullrich
Critical Patch For Oracle's Identity Manager
2016-03-23/a>
Bojan Zdrnja
Abusing Oracles
2014-07-15/a>
Daniel Wesemann
Oracle July 2014 CPU (patch bundle)
2014-07-13/a>
Tony Carothers
Oracle July 2014 Update Pre-Notification
2014-04-16/a>
Johannes Ullrich
Oracle Critical Patch Update for April 2014
2014-01-30/a>
Johannes Ullrich
Oracle Reports Vulnerability
2014-01-14/a>
Johannes Ullrich
Oracle Critical Patch Update January 2014
2013-02-20/a>
Johannes Ullrich
Update Palooza
2013-02-19/a>
Johannes Ullrich
Oracle Updates Java (Java 7 Update 15, Java 6 update 41)
2013-01-12/a>
Stephen Hall
Oracle Patch Tuesday Pre-Release
2012-10-17/a>
Mark Hofman
Oracle Critical Patch Update October
2012-09-23/a>
Tony Carothers
Update for CVE-2012-3132
2012-07-25/a>
Johannes Ullrich
Microsoft Exchange/Sharepoint and others: Oracle Outside In Vulnerability
2012-07-15/a>
Guy Bruneau
Oracle July 2012 Critical Patch Pre-Release Announcement
2012-04-30/a>
Rob VandenBrink
Patch for Oracle TNS Listener issue released !
2012-04-27/a>
Johannes Ullrich
Critical Unpatched Oracle Vulnerability
2012-04-18/a>
Kevin Shortt
Oracle Critical Patch Update Advisory - April 2012: http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html
2012-04-13/a>
Daniel Wesemann
Oracle CPU Patches announced for Apr 17
2012-02-16/a>
Tony Carothers
Java Update for February
2012-02-01/a>
Russ McRee
Oracle Security Alert: http://www.oracle.com/technetwork/topics/security/alert-cve-2011-5035-1506603.html
2012-01-18/a>
Richard Porter
Oracle Quarterly Released, http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
2011-10-22/a>
Guy Bruneau
Oracle Java SE Critical Patch Update
2011-10-19/a>
Mark Hofman
Oracle Critical Patch Update
2011-04-16/a>
Scott Fendley
Oracle Patch Update Pre-Release Announcement
2011-03-07/a>
Bojan Zdrnja
Oracle padding attacks (Codegate crypto 400 writeup)
2011-02-15/a>
Jason Lam
Oracle Java 6 Update 24
2011-02-09/a>
Mark Hofman
Java Floating point issue (CVE-2010-4476)
2011-01-18/a>
Daniel Wesemann
Oracle Patches (Jan2011 CPU)
2010-10-12/a>
Scott Fendley
Oracle Critical Updates Released
2010-07-10/a>
Tony Carothers
Oracle July 2010 Pre-Release Announcement
2010-04-14/a>
Mark Hofman
Oracle has released 47 critical patches (Includes SUN patches)
2010-02-09/a>
Mark Hofman
Oracle has an unscheduled security alert and patch for CVE-2010-0073. The issue affects WebLogic Server and is remotely exploitable. Details and patch are here http://www.oracle.com/technology/deploy/security/alerts/alert-cve-2010-0073.html
2010-02-06/a>
Guy Bruneau
Oracle WebLogic Server Security Alert
2010-01-12/a>
Johannes Ullrich
Oracle Patches Relased
2009-10-20/a>
Raul Siles
Oracle Critical Patch Update (CPU) - October 2009
2009-10-16/a>
Adrien de Beaupre
Cyber Security Awareness Month - Day 16 - Port 1521 - Oracle TNS Listener
2009-07-14/a>
Swa Frantzen
Oracle Black Tuesday
2009-05-19/a>
Bojan Zdrnja
Advanced blind SQL injection (with Oracle examples)
2009-04-14/a>
Swa Frantzen
Oracle quarterly patches
2008-10-14/a>
Swa Frantzen
Oracle quarterly patches on black tuesday
2008-07-30/a>
David Goldsmith
Serious 0-Day Flaw in Oracle -- Patch Released
2008-07-15/a>
Maarten Van Horenbeeck
Oracle (and BEA, Hyperion and TimesTen) critical patch update July 15th, 2008
2006-11-29/a>
Toby Kohlenberg
Week of Oracle bugs cancelled
2006-10-18/a>
Robert Danford
Oracle Quarterly Critical Patch Update (Oct 2006)
WEBLOGIC
2023-04-18/a>
Johannes Ullrich
UDDIs are back? Attackers rediscovering old exploits.
2022-04-05/a>
Johannes Ullrich
WebLogic Crypto Miner Malware Disabling Alibaba Cloud Monitoring Tools
2021-10-11/a>
Johannes Ullrich
Things that go "Bump" in the Night: Non HTTP Requests Hitting Web Servers
2021-10-09/a>
Guy Bruneau
Scanning for Previous Oracle WebLogic Vulnerabilities
2020-11-07/a>
Guy Bruneau
Cryptojacking Targeting WebLogic TCP/7001
2020-10-29/a>
Johannes Ullrich
PATCH NOW: CVE-2020-14882 Weblogic Actively Exploited Against Honeypots
2019-06-19/a>
Johannes Ullrich
Critical Actively Exploited WebLogic Flaw Patched CVE-2019-2729
2019-04-28/a>
Johannes Ullrich
Update about Weblogic CVE-2019-2725 (Exploits Used in the Wild, Patch Status)
2019-04-25/a>
Rob VandenBrink
Unpatched Vulnerability Alert - WebLogic Zero Day
2018-07-20/a>
Kevin Liston
Weblogic Exploit Code Made Public (CVE-2018-2893)
2018-05-03/a>
Renato Marinho
WebLogic Exploited in the Wild (Again)
2010-02-06/a>
Guy Bruneau
Oracle WebLogic Server Security Alert
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Have you seen our swag?
Buy SANS ISC Gear