CVE-2006-2464 Information

Description

stopWebLogic.sh in BEA WebLogic Server 8.1 before Service Pack 4 and 7.0 before Service Pack 6 displays the administrator password to stdout when executed which allows local users to obtain the password by viewing a local display.

Reference

http://dev2dev.bea.com/pub/advisory/181 http://secunia.com/advisories/20130 http://securitytracker.com/id?1016094 http://www.vupen.com/english/advisories/2006/1828 https://exchange.xforce.ibmcloud.com/vulnerabilities/26467