Ibm: >> Websphere Application Server >> 4.0.4 Security Vulnerabilities
Unspecified vulnerability in IBM WebSphere Application Server before 6.0.2.11 has unknown impact and attack vectors because the "UserNameToken cache was improperly used."
CVSS Score
10.0
EPSS Score
0.005
Published
2006-06-27
IBM WebSphere Advanced Server Edition 4.0.4 uses a weak encryption algorithm (XOR and base64 encoding), which allows local users to decrypt passwords when the configuration file is exported to XML.
CVSS Score
1.9
EPSS Score
0.0
Published
2003-12-31
Page 6