2 matches found
CVE-2011-0527
This CVE affects VMware vFabric tc Server (SpringSource tc Server) 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE. The JMX authentication password handling allows use of both plain text and obfuscated passwords, enabling context-dependent attackers with read access to stored passwords ...
CVE-2010-1454
The CVE concerns VMware SpringSource tc Server Runtime (6.0.19/6.0.20 before 6.0.20.D, and 6.0.25.A before 6.0.25.A-SR01) where JmxSocketListener improperly enforces encrypted passwords (s2enc). This allows remote access to the JMX interface with a blank password when the listener is configured t...