Vulnerabilities > CVE-2003-1437 - Unspecified vulnerability in BEA Weblogic Server 7.0/7.0.0.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
BEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1, stores passwords in plaintext when a keystore is used to store a private key or trust certificate authorities, which allows local users to gain access.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 3 | |
OS | 1 | |
OS | 2 | |
OS | 2 | |
OS | 3 | |
Application | 8 |