Vulnerabilities > CVE-2007-0413 - Products Multiple vulnerability in BEA
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL local
bea
Summary
BEA WebLogic Server 8.1 through 8.1 SP5 stores cleartext data in a backup of config.xml after offline editing, which allows local users to obtain sensitive information by reading this backup file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 12 |