This Metasploit module exploits a 0day in the JSESSION cookie value when clustering is configured.
86c77b3be0f72a80cfacf3a893a4763093c6a54c14bc80ae50b93d61caa6c5a5
Oracle Weblogic IIS connector remote overflow exploit that relates to JSESSIONID.
de5529e482413e2be9f8012fa29e6af9eacfb0d3ebb8fd6bad42b75fa2617dcb
A remotely exploitable vulnerability has been discovered in the Apache Connector component of Oracle BEA WebLogic Server. Specifically, the vulnerability is due to a boundary error when processing incoming HTTP requests and can lead to a buffer overflow condition. This boundary error can lead to a Denial of Service (DoS) condition for the Apache HTTP server.
c7c339b930f23c13f36b9129cc242c833a7716780cfe759fd4104eaed9ad7d62