CVE-2003-1437 Information

Description

BEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1 stores passwords in plaintext when a keystore is used to store a private key or trust certificate authorities which allows local users to gain access.

Reference

http://dev.bea.com/resourcelibrary/advisoriesnotifications/BEA03-25.jsp http://www.securityfocus.com/bid/6719 https://exchange.xforce.ibmcloud.com/vulnerabilities/11220