CVE-2001-1189

2002-03-1505:00:00

mitre

www.cve.org

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

IBM Websphere Application Server 3.5.3 and earlier stores a password in cleartext in the sas.server.props file, which allows local users to obtain the passwords via a JSP script.

References

www.iss.net/security_center/static/7698.php

www.securityfocus.com/archive/1/245324

www.securityfocus.com/bid/3682