CVE-2007-5576
N/A
N/A
Summary
BEA Tuxedo 8.0 before RP392 and 8.1 before RP293, and WebLogic Enterprise 5.1 before RP174, echo the password in cleartext, which allows physically proximate attackers to obtain sensitive information via the (1) cnsbind, (2) cnsunbind, or (3) cnsls commands.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://osvdb.org/45478
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34290
- http://dev2dev.bea.com/pub/advisory/226
- http://www.vupen.com/english/advisories/2007/1813
References
- http://osvdb.org/45478
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34290
- http://dev2dev.bea.com/pub/advisory/226
- http://www.vupen.com/english/advisories/2007/1813
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.