Vulnerability Details CVE-2003-1437
BEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1, stores passwords in plaintext when a keystore is used to store a private key or trust certificate authorities, which allows local users to gain access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.0%
CVSS Severity
CVSS v2 Score 2.1
References
- http://dev.bea.com/resourcelibrary/advisoriesnotifications/BEA03-25.jsp
- http://www.securityfocus.com/bid/6719
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11220
- http://dev.bea.com/resourcelibrary/advisoriesnotifications/BEA03-25.jsp
- http://www.securityfocus.com/bid/6719
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11220
Products affected by CVE-2003-1437
-
cpe:2.3:a:bea:weblogic_server:7.0
-
cpe:2.3:a:bea:weblogic_server:7.0.0.1
-
cpe:2.3:o:hp:hp-ux:11.00
-
cpe:2.3:o:hp:hp-ux:11.11i
-
cpe:2.3:o:ibm:aix:4.3.3
-
cpe:2.3:o:microsoft:windows_2000:-
-
cpe:2.3:o:microsoft:windows_2000:beta3
-
cpe:2.3:o:microsoft:windows_nt:-
-
cpe:2.3:o:microsoft:windows_nt:3.0.1
-
cpe:2.3:o:microsoft:windows_nt:3.1
-
cpe:2.3:o:microsoft:windows_nt:3.5
-
cpe:2.3:o:microsoft:windows_nt:3.5.1
-
cpe:2.3:o:microsoft:windows_nt:3.51
-
cpe:2.3:o:microsoft:windows_nt:4.0
-
cpe:2.3:o:redhat:linux:6.2
-
cpe:2.3:o:redhat:linux:7.1
-
cpe:2.3:o:sun:solaris:2.6
-
cpe:2.3:o:sun:sunos:5.7
-
cpe:2.3:o:sun:sunos:5.8