CVE-2015-1849

2017-09-19T13:29:00
ID CVE-2015-1849
Type cve
Reporter NVD
Modified 2017-10-04T13:36:39

Description

AdvancedLdapLodinMogule in Red Hat JBoss Enterprise Application Platform (EAP) before 6.4.1 allows attackers to obtain sensitive information via vectors involving logging the LDAP bind credential password when TRACE logging is enabled.