Vulnerabilities > Vmware > TC Server
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-08-15 | CVE-2011-0527 | Improper Authentication vulnerability in VMWare TC Server VMware vFabric tc Server (aka SpringSource tc Server) 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords. | 5.0 |
2010-05-19 | CVE-2010-1454 | Improper Authentication vulnerability in VMWare TC Server com.springsource.tcserver.serviceability.rmi.JmxSocketListener in VMware SpringSource tc Server Runtime 6.0.19 and 6.0.20 before 6.0.20.D, and 6.0.25.A before 6.0.25.A-SR01, does not properly enforce the requirement for an encrypted (aka s2enc) password, which allows remote attackers to obtain JMX interface access via a blank password. | 6.8 |