Loading
Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and earlier allows remote attackers to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /.jsp" in an HTTP request.
Cite this page
CVE-2008-3257. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2008-3257
Use CWE-119, Bea vendor hub and Weblogic Server product page to widen CVE-2008-3257 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2008-0897, CVE-2008-0901 and CVE-2007-5576 for nearby disclosures in the same product family.