ID de Prueba:	1.3.6.1.4.1.25623.1.0.12043
Categoría:	Web Servers
Título:	BEA WebLogic Operator/Admin Password Disclosure Vulnerability
Resumen:	BEA WebLogic Server and WebLogic Express are prone to a; vulnerability that may result in the disclosure of Operator or Admin passwords.
Descripción:	Summary: BEA WebLogic Server and WebLogic Express are prone to a vulnerability that may result in the disclosure of Operator or Admin passwords. Vulnerability Impact: An attacker who has interactive access to the affected managed server, may potentially exploit this issue in a timed attack to harvest credentials when the managed server fails during the boot process. Solution: The vendor has release updates. Please see the references for more information. CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1757 BugTraq ID: 9501 http://www.securityfocus.com/bid/9501 CERT/CC vulnerability note: VU#350350 http://www.kb.cert.org/vuls/id/350350 http://secunia.com/advisories/10728 XForce ISS Database: weblogic-boot-password-disclosure(14957) https://exchange.xforce.ibmcloud.com/vulnerabilities/14957
Copyright	Copyright (C) 2004 Astharot

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.