CVE-2003-1437

Sažetak

BEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1, stores passwords in plaintext when a keystore is used to store a private key or trust certificate authorities, which allows local users to gain access.

Reference

http://dev.bea.com/resourcelibrary/advisoriesnotifications/BEA03-25.jsp
http://www.securityfocus.com/bid/6719
https://exchange.xforce.ibmcloud.com/vulnerabilities/11220

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

30-10-2018 - 16:25

Objavljeno

31-12-2003 - 05:00