CVE-2006-2546

2006-05-2310:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.5%

JSON

A recommended admin password reset mechanism for BEA WebLogic Server 8.1, when followed before October 10, 2005, causes the administrator password to be stored in cleartext in the domain directory, which could allow attackers to gain privileges.

References

dev2dev.bea.com/pub/advisory/193

secunia.com/advisories/20130

securitytracker.com/id?1016101

www.vupen.com/english/advisories/2006/1828

exchange.xforce.ibmcloud.com/vulnerabilities/26460