CVE-2008-7274

2011-02-15T01:00:00
ID CVE-2008-7274
Type cve
Reporter cve@mitre.org
Modified 2011-02-15T05:00:00

Description

IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by (1) not providing a password or (2) providing an empty password.