Sign in
CVE-2003-1224
CVE-2003-1224
Description
Weblogic.admin for BEA WebLogic Server and Express 7.0 and 7.0.0.1 displays the JDBCConnectionPoolRuntimeMBean password to the screen in cleartext, which allows attackers to read a user's password by physically observing ("shoulder surfing") the screen.
Impact
CVSS v2 : 2.1 LOW
Type
NVD-CWE-Other
Attack Vector
CVSSv2 Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N
Quick links
CVE
,
NVD
,
CERT
,
Metasploit
,
Exploit-db
,
Fulldisc
,
Bugtraq
,
Microsoft
,
Red Hat
,
Debian
, GitHub
code
/
issues
,
Google
References
http://dev2dev.bea.com/pub/advisory/22
http://www.securityfocus.com/bid/7563
FAQ
Terms of service
Privacy policy
