BEA WebLogic Server and Express 8.1, SP1 and earlier, stores the administrator password in cleartext in config.xml, which allows local users to gain privileges.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Weblogic_server | Bea | 6.1 (including) | 6.1 (including) |
| Weblogic_server | Bea | 6.1-sp1 (including) | 6.1-sp1 (including) |
| Weblogic_server | Bea | 6.1-sp2 (including) | 6.1-sp2 (including) |
| Weblogic_server | Bea | 6.1-sp3 (including) | 6.1-sp3 (including) |
| Weblogic_server | Bea | 6.1-sp4 (including) | 6.1-sp4 (including) |
| Weblogic_server | Bea | 6.1-sp5 (including) | 6.1-sp5 (including) |
| Weblogic_server | Bea | 6.1-sp6 (including) | 6.1-sp6 (including) |
| Weblogic_server | Bea | 7.0 (including) | 7.0 (including) |
| Weblogic_server | Bea | 7.0-sp1 (including) | 7.0-sp1 (including) |
| Weblogic_server | Bea | 7.0-sp2 (including) | 7.0-sp2 (including) |
| Weblogic_server | Bea | 7.0-sp3 (including) | 7.0-sp3 (including) |
| Weblogic_server | Bea | 7.0-sp4 (including) | 7.0-sp4 (including) |
| Weblogic_server | Bea | 7.0-sp5 (including) | 7.0-sp5 (including) |
| Weblogic_server | Bea | 8.1 (including) | 8.1 (including) |
| Weblogic_server | Bea | 8.1-sp1 (including) | 8.1-sp1 (including) |
| Weblogic_server | Bea | 8.1-sp2 (including) | 8.1-sp2 (including) |
References
- http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_50.00.jsp
- http://secunia.com/advisories/10728
- http://www.kb.cert.org/vuls/id/350350
- http://www.securityfocus.com/bid/9501
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14957
- http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_50.00.jsp
- http://secunia.com/advisories/10728
- http://www.kb.cert.org/vuls/id/350350
- http://www.securityfocus.com/bid/9501
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14957