2 matches found
CVE-2003-1226
The CVE-2003-1226 entry concerns BEA WebLogic Server and Express versions 7.0 and 7.0.0.1 where secrets used for password encryption are stored insecurely in config.xml, filerealm.properties, and weblogic-rar.xml. This storage flaw enables a local attacker to read those secrets and decrypt passwo...
CVE-2003-1226
BEA WebLogic Server and Express 7.0 and 7.0.0.1 stores certain secrets concerning password encryption insecurely in config.xml, filerealm.properties, and weblogic-rar.xml, which allows local users to learn those secrets and decrypt passwords...