CVE-2001-1189

2001-12-13T05:00:00
ID CVE-2001-1189
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:25:00

Description

IBM Websphere Application Server 3.5.3 and earlier stores a password in cleartext in the sas.server.props file, which allows local users to obtain the passwords via a JSP script.